Dobrý den,
prosím Vás o pomoc. Používám program, který běží v počítači na pozadí a uživatelské rozhraní má řešeno přes webový prohlížeč (IE nebo Chrome). Když ale v tomto prostředí kliknu na nějakou položku nebo nastavení, přehodí mě to na nějakou webovou stránku (pokaždé jinou). Zkoušel jsem počítač proskenovat všemi možnými programy (Eset, Security Essentials, Avast, Spybot, Adaware, Kaspersky, Panda), ale bez výsledku. Přikládám logy z FRST. Děkuji za pomoc
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 20-08-2017
Ran by Uzivatel (administrator) on UZIVATEL-PC (01-09-2017 15:18:58)
Running from C:\Users\Uzivatel\Desktop
Loaded Profiles: Uzivatel (Available Profiles: Uzivatel & Classic .NET AppPool & DefaultAppPool)
Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 10 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
() C:\Program Files\Lely\T4C\AFSSynch\AFSSynchronizer.exe
(DeviceVM, Inc.) C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
(Juniper Networks) C:\Program Files\Juniper Networks\Common Files\dsNcService.exe
() C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe
(Microsoft Corporation) C:\Windows\System32\inetsrv\inetinfo.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\VS7DEBUG\MDM.EXE
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10_50.T4C3\MSSQL\Binn\sqlservr.exe
(Nitro PDF Software) C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\tv_w32.exe
(DeviceVM, Inc.) C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Geek Software GmbH) C:\Program Files\PDF24\pdf24.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Neowise) C:\Program Files\RoboTask Lite\RoboTaskLite.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Lely Industries N.V.) C:\Program Files\Lely\T4C\Bin\T4CServiceManager.exe
() C:\Program Files\MoomlAgent\MoomlAgent.exe
(Lely) C:\Program Files\Lely\T4C.Mobile\NetworkConnector\NetworkConnector.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Lely) C:\Program Files\Lely\T4C\Bin\T4CNService.exe
(LELY) C:\Program Files\Lely\T4C\Bin\LFWLogService.exe
() C:\Program Files\Lely\T4C\Bin\NedapCowLocator.exe
() C:\Program Files\Lely\T4C\T4CMobileApi\T4C.Api.Service.exe
(Lely Industries N.V.) C:\Program Files\Lely\T4C\Bin\BackupService.exe
(Lely Industries N.V.) C:\Program Files\Lely\T4C\Bin\T4CCalmSynchroniser.exe
(Lely Industries N.V.) C:\Program Files\Lely\T4C\Bin\T4CSynchroniser.exe
(Lely Industries N.V.) C:\Program Files\Lely\T4C\Bin\LelyPDF.Service.exe
(Lely Industries N.V.) C:\Program Files\Lely\T4C\Bin\T4CServices.exe
(VIT-PCS GmbH) C:\Program Files\FoersterTechnik\KM2\kalbmanager_srv.exe
(forum.viry.cz) C:\Users\Uzivatel\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [BCU] => C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe [346320 2009-08-04] (DeviceVM, Inc.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [7547424 2009-06-25] (Realtek Semiconductor)
HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-04] (Intel Corporation)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-10-01] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1002984 2016-11-14] (Microsoft Corporation)
HKLM\...\Run: [PDFPrint] => C:\Program Files\PDF24\pdf24.exe [210432 2016-07-05] (Geek Software GmbH)
HKU\S-1-5-21-893007568-957827634-3976518877-1000\...\Run: [RoboTask Lite] => C:\Program Files\RoboTask Lite\RoboTaskLite.exe [1915720 2013-12-05] (Neowise)
HKU\S-1-5-21-893007568-957827634-3976518877-1000\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [354304 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-893007568-957827634-3976518877-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Mystify.scr [221184 2010-11-20] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\T4C Service Manager.lnk [2010-12-30]
ShortcutTarget: T4C Service Manager.lnk -> C:\Program Files\Lely\T4C\Bin\T4CServiceManager.exe (Lely Industries N.V.)
Startup: C:\Users\Uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MoomlAgent.lnk [2017-03-15]
ShortcutTarget: MoomlAgent.lnk -> C:\Program Files\MoomlAgent\MoomlAgent.exe ()
Startup: C:\Users\Uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\NetworkConnector.lnk [2014-09-01]
ShortcutTarget: NetworkConnector.lnk -> C:\Program Files\Lely\T4C.Mobile\NetworkConnector\NetworkConnector.exe (Lely)
BootExecute: autocheck autochk * sdnclean.exe
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicyScripts: Restriction <==== ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\Parameters: [NameServer] 82.163.143.176 82.163.142.178
Tcpip\..\Interfaces\{2F0D9425-7021-467D-AF20-8293CA1AE176}: [NameServer] 82.163.143.176 82.163.142.178
Tcpip\..\Interfaces\{8C827E41-1970-4E79-B480-8EAA63B58104}: [NameServer] 82.163.143.176 82.163.142.178
Tcpip\..\Interfaces\{8C827E41-1970-4E79-B480-8EAA63B58104}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll [2015-01-26] (Oracle Corporation)
BHO: No Name -> {d40c654d-7c51-4eb3-95b2-1e23905c2a2d} -> No File
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-26] (Oracle Corporation)
Toolbar: HKU\S-1-5-21-893007568-957827634-3976518877-1000 -> No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKU\S-1-5-21-893007568-957827634-3976518877-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455}
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL [2000-04-19] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\ribyj95t.default [2017-09-01]
FF DefaultSearchUrl: Mozilla\Firefox\Profiles\ribyj95t.default -> hxxp://www.google.com/search?ie=UTF-8&oe=utf-8&q=
FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\ribyj95t.default -> Google
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\ribyj95t.default -> Google
FF Homepage: Mozilla\Firefox\Profiles\ribyj95t.default -> hxxp://www.seznam.cz/
FF Keyword.URL: Mozilla\Firefox\Profiles\ribyj95t.default -> hxxp://www.google.com/search?ie=UTF-8&oe=utf-8&q=
FF Extension: (Video DownloadHelper) - C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\ribyj95t.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2017-05-09]
FF Extension: (Adblock Plus) - C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\ribyj95t.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-06-08]
FF Extension: (Seznam lištička) - C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\ribyj95t.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2017-08-30]
FF Extension: (Firefox Screenshots) - C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\ribyj95t.default\features\{36f754ad-f8c6-4995-b9f0-bf5d1c1d927e}\screenshots@mozilla.org.xpi [2017-08-26]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_26_0_0_151.dll [2017-08-09] ()
FF Plugin: @alawar.com/npapi -> C:\Windows\npapi.dll [2014-01-29] (Alawar)
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-26] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-26] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @nitropdf.com/NitroPDF -> C:\Program Files\Nitro\Reader 3\npnitromozilla.dll [2013-07-26] (Nitro PDF)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2013-12-18] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-893007568-957827634-3976518877-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Uzivatel\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-06-24] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-893007568-957827634-3976518877-1000: http://www.exent.com/GameTreatWidget -> C:\Program Files\Free Ride Games\npGameTreatWidget.dll [No File]
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://localhost/T4C/Content/Login.aspx?ReturnUrl=%2fT4C%2fdefault.aspx"
CHR Profile: C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default [2017-08-30]
CHR Extension: (Dokumenty Google) - C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-06]
CHR Extension: (Disk Google) - C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-21]
CHR Extension: (YouTube) - C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-07]
CHR Extension: (Vyhledávání Google) - C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-21]
CHR Extension: (Dokumenty Google offline) - C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-29]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-30]
CHR Extension: (Gmail) - C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-03]
CHR Extension: (Chrome Media Router) - C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-08]
CHR HKLM\...\Chrome\Extension: [fagakgcelolinfnkfgekcnedpaklfcok] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [mibfbmhijjgpkmobcfdlelpccpeafoom] - <no Path/update_url>
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AFSSynchronizer; C:\Program Files\Lely\T4C\AFSSynch\AFSSynchronizer.exe [23040 2017-02-23] () [File not signed]
R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [212992 2014-11-21] (AMD) [File not signed]
R2 BCUService; C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe [219360 2009-08-04] (DeviceVM, Inc.)
R2 dsNcService; C:\Program Files\Juniper Networks\Common Files\dsNcService.exe [692328 2013-04-15] (Juniper Networks)
R2 ftpsvc; C:\Windows\system32\inetsrv\ftpsvc.dll [310272 2012-06-01] (Microsoft Corporation)
R2 GEST Service; C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe [68136 2009-07-30] ()
R2 IISADMIN; C:\Windows\system32\inetsrv\inetinfo.exe [13824 2009-07-14] (Microsoft Corporation)
R2 LDNService; C:\Program Files\Lely\T4C\Bin\T4CNService.exe [94208 2010-08-11] (Lely) [File not signed]
R2 LFWLogService; C:\Program Files\Lely\T4C\Bin\LFWLogService.exe [90112 2010-02-15] (LELY) [File not signed]
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [103696 2016-11-14] (Microsoft Corporation)
R2 MSSQL$T4C3; c:\Program Files\Microsoft SQL Server\MSSQL10_50.T4C3\MSSQL\Binn\sqlservr.exe [43130032 2015-03-30] (Microsoft Corporation)
R2 NedapLDService; C:\Program Files\Lely\T4C\Bin\NedapCowLocator.exe [99840 2017-05-22] () [File not signed]
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [File not signed]
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [280864 2016-11-14] (Microsoft Corporation)
R2 NitroReaderDriverReadSpool3; C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe [196624 2013-07-26] (Nitro PDF Software)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [File not signed]
S4 SCRLDService; C:\Program Files\SCR\LDService\SCRLDService.exe [7168 2014-09-01] (Microsoft) [File not signed]
S4 SQLAgent$T4C3; c:\Program Files\Microsoft SQL Server\MSSQL10_50.T4C3\MSSQL\Binn\SQLAGENT.EXE [381104 2015-03-30] (Microsoft Corporation)
R2 T4CApiService; C:\Program Files\Lely\T4C\T4cMobileApi\T4C.Api.Service.exe [135680 2017-05-22] () [File not signed]
R2 T4CBackup; C:\Program Files\Lely\T4C\Bin\BackupService.exe [31232 2017-05-22] (Lely Industries N.V.) [File not signed]
R2 T4CCalmSynch; C:\Program Files\Lely\T4C\Bin\T4CCalmSynchroniser.exe [35840 2017-05-22] (Lely Industries N.V.) [File not signed]
R2 T4CDevSynch; C:\Program Files\Lely\T4C\Bin\T4CSynchroniser.exe [1787904 2017-05-22] (Lely Industries N.V.) [File not signed]
R2 T4CDLM; C:\Program Files\Lely\T4C\Bin\LelyPDF.Service.exe [10752 2017-05-22] (Lely Industries N.V.) [File not signed]
R2 T4CGenerator; C:\Program Files\Lely\T4C\Bin\T4CServices.exe [198144 2017-08-01] (Lely Industries N.V.) [File not signed]
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [5697296 2015-09-11] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [16955392 2014-11-21] (Advanced Micro Devices, Inc.) [File not signed]
R3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [472576 2014-11-21] (Advanced Micro Devices, Inc.) [File not signed]
S3 atikmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [16955392 2014-11-21] (Advanced Micro Devices, Inc.) [File not signed]
R3 dsNcAdpt; C:\Windows\System32\DRIVERS\dsNcAdpt.sys [26624 2013-04-15] (Juniper Networks)
R3 e1qexpress; C:\Windows\System32\DRIVERS\e1q6032.sys [190464 2009-07-14] (Intel Corporation)
S3 eapihdrv; C:\Users\Uzivatel\AppData\Local\Temp\ehdrv.sys [135760 2017-08-28] (ESET)
R3 gdrv; C:\Windows\gdrv.sys [17488 2017-09-01] (Windows (R) 2000 DDK provider)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [252808 2016-08-25] (Microsoft Corporation)
S4 RsFx0153; C:\Windows\System32\DRIVERS\RsFx0153.sys [250152 2015-03-30] (Microsoft Corporation)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [320120 2014-06-13] (Duplex Secure Ltd.)
S3 WDC_SAM; C:\Windows\System32\DRIVERS\wdcsam.sys [11520 2009-02-13] (Western Digital Technologies) [File not signed]
R1 wfcre; C:\Windows\System32\drivers\wfcre.sys [112000 2017-07-04] ()
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-09-01 15:18 - 2017-09-01 15:19 - 000017246 _____ C:\Users\Uzivatel\Desktop\FRST.txt
2017-09-01 15:17 - 2017-09-01 15:17 - 001792512 _____ (Farbar) C:\Users\Uzivatel\Desktop\FRST.exe
2017-09-01 15:17 - 2017-09-01 15:17 - 000112640 _____ (forum.viry.cz) C:\Users\Uzivatel\Desktop\FRSTLauncher.exe
2017-09-01 11:46 - 2017-09-01 11:46 - 000000000 ___HD C:\OneDriveTemp
2017-08-30 16:25 - 2017-08-30 18:01 - 000000000 ____D C:\Users\Uzivatel\AppData\Roaming\Panda Security
2017-08-30 16:25 - 2017-08-30 16:25 - 000000000 ____D C:\ProgramData\panda_url_filtering
2017-08-30 16:23 - 2017-08-30 18:01 - 000000000 ____D C:\ProgramData\Panda Security
2017-08-30 16:22 - 2017-08-30 16:22 - 001980152 _____ (Panda Security, S.L.) C:\Users\Uzivatel\Downloads\PANDAFREEAV.exe
2017-08-30 13:38 - 2017-08-30 13:38 - 000709709 _____ C:\Users\Uzivatel\Downloads\Mechwarrior.rar
2017-08-30 09:49 - 2017-08-30 09:49 - 000000000 ____D C:\Users\Uzivatel\AppData\Local\AdAwareDesktop
2017-08-30 09:45 - 2017-08-30 09:45 - 002611632 _____ C:\Users\Uzivatel\Downloads\Adaware_Installer.exe
2017-08-28 20:03 - 2017-08-29 05:40 - 000262144 _____ C:\Windows\system32\config\ELAM
2017-08-28 16:59 - 2017-08-28 16:59 - 002412720 _____ (Kaspersky Lab) C:\Users\Uzivatel\Downloads\kts18.0.0.405aben_12562.exe
2017-08-28 15:03 - 2017-08-28 20:04 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2017-08-28 15:02 - 2017-08-28 15:02 - 002671136 _____ (Kaspersky Lab) C:\Users\Uzivatel\Downloads\kss16.0.0.1344en_ru_de_fr_es_it_zh-hans_pl_tr_nl_cs_ko_id_pt_ar_vi_hi_zh-hant_fa_10837.exe
2017-08-27 16:12 - 2017-08-27 16:48 - 000002084 _____ C:\Windows\wininit.ini
2017-08-27 15:40 - 2017-08-29 05:39 - 000000000 ____D C:\Program Files\Common Files\AV
2017-08-27 14:49 - 2017-08-27 14:49 - 046525608 _____ (Safer-Networking Ltd. ) C:\Users\Uzivatel\Downloads\spybot-2.4.exe
2017-08-26 15:40 - 2017-08-26 15:40 - 000049806 _____ C:\Windows\ntbtlog.txt
2017-08-26 10:03 - 2017-08-26 10:03 - 000000000 ____D C:\Users\Uzivatel\AppData\Local\CEF
2017-08-26 10:02 - 2017-08-26 10:02 - 000921280 _____ (Microsoft Corporation) C:\Windows\ucrtbase.dll
2017-08-26 06:06 - 2017-08-26 06:06 - 006654960 _____ (AVAST Software) C:\Users\Uzivatel\Downloads\avast_free_antivirus_setup_online.exe
2017-08-24 18:55 - 2017-08-28 21:22 - 000000000 ____D C:\ProgramData\e792d596-50c3-0
2017-08-24 18:55 - 2017-08-28 21:22 - 000000000 ____D C:\ProgramData\e792d596-31b5-1
2017-08-24 18:55 - 2017-08-25 16:49 - 000000000 ____D C:\ProgramData\82ff95ce
2017-08-24 18:55 - 2017-08-25 16:49 - 000000000 ____D C:\ProgramData\{D2DFF142-6574-46E9-469D-D015B619F058}
2017-08-24 18:54 - 2017-08-28 21:22 - 000000000 ____D C:\ProgramData\{67a045f1-512c-1}
2017-08-24 18:54 - 2017-08-28 21:22 - 000000000 ____D C:\ProgramData\{48d13e98-412c-0}
2017-08-09 08:52 - 2017-07-29 16:50 - 000074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2017-08-09 08:52 - 2017-07-21 16:26 - 000518144 _____ C:\Windows\system32\msjetoledb40.dll
2017-08-09 08:52 - 2017-07-21 16:26 - 000409600 _____ (Microsoft Corporation) C:\Windows\system32\msexch40.dll
2017-08-09 08:52 - 2017-07-21 16:26 - 000290816 _____ (Microsoft Corporation) C:\Windows\system32\msjtes40.dll
2017-08-09 08:52 - 2017-07-21 16:26 - 000282624 _____ (Microsoft Corporation) C:\Windows\system32\mstext40.dll
2017-08-09 08:52 - 2017-07-14 17:10 - 001549824 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2017-08-09 08:52 - 2017-07-14 17:10 - 001400320 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2017-08-09 08:52 - 2017-07-14 17:10 - 001363968 _____ (Microsoft Corporation) C:\Windows\system32\Query.dll
2017-08-09 08:52 - 2017-07-14 17:10 - 000666624 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2017-08-09 08:52 - 2017-07-14 17:10 - 000382976 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2017-08-09 08:52 - 2017-07-14 17:10 - 000337408 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2017-08-09 08:52 - 2017-07-14 17:10 - 000197120 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2017-08-09 08:52 - 2017-07-14 17:10 - 000104448 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2017-08-09 08:52 - 2017-07-14 17:10 - 000059392 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2017-08-09 08:52 - 2017-07-14 17:10 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2017-08-09 08:52 - 2017-07-14 17:00 - 000427520 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2017-08-09 08:52 - 2017-07-14 17:00 - 000164352 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2017-08-09 08:52 - 2017-07-14 16:59 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2017-08-09 08:52 - 2017-07-14 16:59 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
2017-08-09 08:52 - 2017-07-14 16:50 - 000054272 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2017-08-09 08:52 - 2017-07-14 16:50 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2017-08-09 08:52 - 2017-07-08 17:19 - 000250600 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2017-08-09 08:52 - 2017-07-08 16:51 - 002402816 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-08-09 08:52 - 2017-07-07 17:15 - 004001000 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2017-08-09 08:52 - 2017-07-07 17:15 - 003945192 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-08-09 08:52 - 2017-07-07 17:15 - 000296680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgrx.sys
2017-08-09 08:52 - 2017-07-07 17:15 - 000137960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-08-09 08:52 - 2017-07-07 17:15 - 000067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-08-09 08:52 - 2017-07-07 17:13 - 001310528 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2017-08-09 08:52 - 2017-07-07 17:11 - 000655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-08-09 08:52 - 2017-07-07 17:11 - 000400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2017-08-09 08:52 - 2017-07-07 17:11 - 000261120 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-08-09 08:52 - 2017-07-07 17:11 - 000254464 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-08-09 08:52 - 2017-07-07 17:11 - 000223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2017-08-09 08:52 - 2017-07-07 17:11 - 000172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2017-08-09 08:52 - 2017-07-07 17:11 - 000141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-08-09 08:52 - 2017-07-07 17:11 - 000109568 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2017-08-09 08:52 - 2017-07-07 17:11 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-08-09 08:52 - 2017-07-07 17:11 - 000065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2017-08-09 08:52 - 2017-07-07 17:11 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2017-08-09 08:52 - 2017-07-07 17:11 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2017-08-09 08:52 - 2017-07-07 17:11 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2017-08-09 08:52 - 2017-07-07 17:10 - 001062912 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-08-09 08:52 - 2017-07-07 17:10 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2017-08-09 08:52 - 2017-07-07 17:10 - 000644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2017-08-09 08:52 - 2017-07-07 17:10 - 000554496 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-08-09 08:52 - 2017-07-07 17:10 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2017-08-09 08:52 - 2017-07-07 17:10 - 000082432 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2017-08-09 08:52 - 2017-07-07 17:10 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2017-08-09 08:52 - 2017-07-07 17:10 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2017-08-09 08:52 - 2017-07-07 17:10 - 000038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2017-08-09 08:52 - 2017-07-07 17:10 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2017-08-09 08:52 - 2017-07-07 17:10 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2017-08-09 08:52 - 2017-07-07 16:52 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2017-08-09 08:52 - 2017-07-07 16:52 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2017-08-09 08:52 - 2017-07-07 16:52 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2017-08-09 08:52 - 2017-07-07 16:52 - 000016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2017-08-09 08:52 - 2017-07-07 16:51 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2017-08-09 08:52 - 2017-07-07 16:50 - 000262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2017-08-09 08:52 - 2017-07-07 16:48 - 000226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-08-09 08:52 - 2017-07-07 16:48 - 000124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-08-09 08:52 - 2017-07-07 16:48 - 000098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-08-09 08:52 - 2017-07-07 16:47 - 000069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2017-08-09 08:52 - 2017-07-07 16:47 - 000036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2017-08-09 08:52 - 2017-07-07 16:47 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-08-09 08:52 - 2017-07-07 16:47 - 000015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-08-09 08:52 - 2017-07-01 15:05 - 001311744 _____ (Microsoft Corporation) C:\Windows\system32\msjet40.dll
2017-08-09 08:52 - 2017-07-01 15:05 - 000866816 _____ (Microsoft Corporation) C:\Windows\system32\mswdat10.dll
2017-08-09 08:52 - 2017-07-01 15:05 - 000641536 _____ (Microsoft Corporation) C:\Windows\system32\mswstr10.dll
2017-08-09 08:52 - 2017-07-01 15:05 - 000616448 _____ (Microsoft Corporation) C:\Windows\system32\msrepl40.dll
2017-08-09 08:52 - 2017-07-01 15:05 - 000475648 _____ (Microsoft Corporation) C:\Windows\system32\msxbde40.dll
2017-08-09 08:52 - 2017-07-01 15:05 - 000375808 _____ (Microsoft Corporation) C:\Windows\system32\mspbde40.dll
2017-08-09 08:52 - 2017-07-01 15:05 - 000343552 _____ (Microsoft Corporation) C:\Windows\system32\msrd3x40.dll
2017-08-09 08:52 - 2017-07-01 15:05 - 000339968 _____ (Microsoft Corporation) C:\Windows\system32\msexcl40.dll
2017-08-09 08:52 - 2017-07-01 15:05 - 000310272 _____ (Microsoft Corporation) C:\Windows\system32\msrd2x40.dll
2017-08-09 08:52 - 2017-07-01 15:05 - 000240640 _____ (Microsoft Corporation) C:\Windows\system32\msltus40.dll
2017-08-09 08:52 - 2017-07-01 15:05 - 000144896 _____ (Microsoft Corporation) C:\Windows\system32\msjint40.dll
2017-08-09 08:52 - 2017-07-01 15:05 - 000083968 _____ (Microsoft Corporation) C:\Windows\system32\msjter40.dll
2017-08-07 12:08 - 2017-08-07 12:09 - 122366456 _____ (CHENGDU YIWO Tech Development Co., Ltd ) C:\Users\Uzivatel\Downloads\tb_free.exe
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-09-01 15:18 - 2016-11-18 15:54 - 000000000 ____D C:\Users\Uzivatel\AppData\LocalLow\Mozilla
2017-09-01 14:01 - 2011-06-09 15:06 - 000000000 ____D C:\ProgramData\AlawarWrapper
2017-09-01 11:54 - 2009-07-14 06:34 - 000018240 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-09-01 11:54 - 2009-07-14 06:34 - 000018240 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-09-01 11:48 - 2010-07-14 16:08 - 000000000 ____D C:\log
2017-09-01 11:47 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\system32\inetsrv
2017-09-01 11:46 - 2014-07-28 17:00 - 000000000 ___RD C:\Users\Uzivatel\OneDrive
2017-09-01 11:45 - 2010-08-25 07:34 - 000017488 _____ (Windows (R) 2000 DDK provider) C:\Windows\gdrv.sys
2017-09-01 11:45 - 2009-07-14 06:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-09-01 11:42 - 2011-02-05 11:50 - 000000308 _____ C:\Windows\Brownie.ini
2017-09-01 10:03 - 2013-10-30 15:54 - 000000000 ____D C:\FRST
2017-08-31 22:04 - 2014-08-29 14:49 - 000000000 ____D C:\ZalohaT4C
2017-08-31 21:05 - 2010-11-17 00:00 - 000000000 ____D C:\BackupShare
2017-08-31 09:38 - 2014-03-24 12:45 - 000000110 _____ C:\UESKOT.txt
2017-08-31 04:31 - 2014-04-27 17:35 - 000000000 ____D C:\Users\Uzivatel\AppData\Roaming\vlc
2017-08-30 18:05 - 2010-08-25 07:34 - 000109280 _____ C:\Users\Uzivatel\AppData\Local\GDIPFONTCACHEV1.DAT
2017-08-30 18:05 - 2009-07-14 06:33 - 000409608 _____ C:\Windows\system32\FNTCACHE.DAT
2017-08-30 18:01 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\inf
2017-08-30 17:52 - 2015-09-18 11:09 - 000000000 ____D C:\xxx
2017-08-28 21:22 - 2017-07-22 06:01 - 000000000 ____D C:\ProgramData\6e455ca7-1e33-1
2017-08-28 00:00 - 2015-09-18 11:26 - 000000000 ____D C:\MOOML
2017-08-27 16:12 - 2016-03-02 15:50 - 000000000 ____D C:\Users\Uzivatel\AppData\Local\SlimWare Utilities Inc
2017-08-26 15:41 - 2010-08-25 15:00 - 000000000 ____D C:\Users\Uzivatel\AppData\Roaming\TeamViewer
2017-08-26 12:02 - 2011-10-26 16:40 - 000000000 ____D C:\ProgramData\AVAST Software
2017-08-26 11:30 - 2012-09-02 11:30 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2017-08-26 04:34 - 2017-01-29 16:02 - 000000000 ____D C:\Recepty
2017-08-26 04:31 - 2017-06-21 04:30 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-08-25 22:15 - 2014-01-16 16:41 - 000002101 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-08-25 22:15 - 2014-01-16 16:41 - 000002089 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-08-25 19:45 - 2010-08-25 15:00 - 000000000 ____D C:\Program Files\TeamViewer
2017-08-25 15:05 - 2011-10-20 15:20 - 000000925 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-08-24 18:55 - 2017-07-22 06:01 - 000000000 ____D C:\ProgramData\6e455ca7-26a7-0
2017-08-18 10:08 - 2010-08-25 08:27 - 000000000 ____D C:\LELY FILES
2017-08-17 05:51 - 2011-07-15 04:17 - 000019456 _____ C:\Users\Uzivatel\Desktop\Čísla telat.xls
2017-08-14 14:20 - 2010-08-25 08:38 - 000000000 ____D C:\Program Files\Lely
2017-08-10 05:47 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\rescache
2017-08-10 05:18 - 2010-08-25 07:12 - 001915994 _____ C:\Windows\system32\PerfStringBackup.INI
2017-08-10 05:18 - 2009-07-14 10:44 - 000788990 _____ C:\Windows\system32\perfh005.dat
2017-08-10 05:18 - 2009-07-14 10:44 - 000187700 _____ C:\Windows\system32\perfc005.dat
2017-08-10 03:06 - 2013-08-11 03:00 - 000000000 ____D C:\Windows\system32\MRT
2017-08-10 03:02 - 2010-08-27 18:17 - 137505280 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-08-09 15:37 - 2015-02-19 18:14 - 000000000 ____D C:\Program Files\DOSBox-0.74
2017-08-09 05:05 - 2012-05-01 04:04 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2017-08-09 05:05 - 2011-06-15 09:10 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2017-08-09 05:05 - 2010-08-25 10:25 - 000000000 ____D C:\Windows\system32\Macromed
2017-08-08 17:52 - 2010-08-30 14:36 - 000000000 ____D C:\Users\Uzivatel\Desktop\Somatic test
2017-08-03 15:01 - 2016-10-08 05:23 - 000000000 ____D C:\Users\Uzivatel\AppData\Roaming\Farm Mania 2.1
==================== Files in the root of some directories =======
2011-03-28 16:33 - 2011-03-28 16:40 - 000762880 ____H () C:\Users\Uzivatel\AppData\Roaming\base_en.db
2014-02-20 17:41 - 2014-02-22 12:47 - 000306157 _____ () C:\Users\Uzivatel\AppData\Roaming\log.sflog
2017-01-26 13:24 - 2017-05-01 18:05 - 000000600 _____ () C:\Users\Uzivatel\AppData\Local\PUTTY.RND
2013-09-21 05:12 - 2013-09-21 05:12 - 000002237 _____ () C:\Users\Uzivatel\AppData\Local\recently-used.xbel
2011-01-20 18:27 - 2011-06-06 16:14 - 000007597 _____ () C:\Users\Uzivatel\AppData\Local\Resmon.ResmonCfg
2010-08-25 10:22 - 2011-02-05 11:32 - 000006410 _____ () C:\ProgramData\hpzinstall.log
Some files in TEMP:
====================
2017-08-30 16:24 - 2017-08-30 16:24 - 058117792 _____ (Panda Security, S.L.) C:\Users\Uzivatel\AppData\Local\Temp\{0BA60353-F664-4D66-B58A-ADCB535E7245}.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Microsoft Security Essentials (Enabled - Up to date) {71A27EC9-3DA6-45FC-60A7-004F623C6189}
AS: Microsoft Security Essentials (Enabled - Up to date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Uzivatel\Desktop" je 3740 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Podivné chování prohlížečů
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Podivné chování prohlížečů
- Přílohy
-
- Addition.zip
- (8.12 KiB) Staženo 90 x
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Podivné chování prohlížečů
Zdravím!
Jak je na tom váš oper. systém s legalitou?
Jak je na tom váš oper. systém s legalitou?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Podivné chování prohlížečů
Systém je legální. Akorát když jsem počítač koupil, byla v něm nainstalovaná 64 bitová verze a já potřeboval 32 bitovou. Tak jsem systém přeinstaloval a aktivoval ho pomocí kódu na nálepce na bedně. Řešil jsem to tenkrát s prodejcem a ten řekl, že licence platí pro obě verze, takže by to snad mělo být v pořádku.
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Podivné chování prohlížečů
OK. Spusťte tento sken:
Stáhněte a spusťte OTL: http://oldtimer.geekstogo.com/OTL.exe . Spusťte, zaškrněte "Pro všechny uživatele", Kontrola na havěť LOP" a Kontrola na hvěť PURITY" a do dolního bílého okna zkopírujte:
Stáhněte a spusťte OTL: http://oldtimer.geekstogo.com/OTL.exe . Spusťte, zaškrněte "Pro všechny uživatele", Kontrola na havěť LOP" a Kontrola na hvěť PURITY" a do dolního bílého okna zkopírujte:
a klikněte na >Prohledat<. Dejte oba logy.CREATERESTOREPOINT
netsvcs
drivers32
savembr:0
/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
scecli.dll
services.exe
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop
%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
%PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
%PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
%PROGRAMFILES%\Opera\opera.exe /md5
%PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5
%SystemDrive%\PhysicalMBR.bin /md5
*crack* /s
*keygen* /s
*loader* /s
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Podivné chování prohlížečů
Logy z OTL:
OTL logfile created on: 1.9.2017 19:27:20 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Uzivatel\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.17609)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
3,50 Gb Total Physical Memory | 1,56 Gb Available Physical Memory | 44,45% Memory free
7,00 Gb Paging File | 4,12 Gb Available in Paging File | 58,91% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 279,36 Gb Total Space | 124,62 Gb Free Space | 44,61% Space Free | Partition Type: NTFS
Drive E: | 100,00 Mb Total Space | 65,60 Mb Free Space | 65,60% Space Free | Partition Type: NTFS
Computer Name: UZIVATEL-PC | User Name: Uzivatel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2017.09.01 19:25:21 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Uzivatel\Desktop\OTL.exe
PRC - [2017.08.01 16:23:11 | 000,198,144 | ---- | M] (Lely Industries N.V.) -- C:\Program Files\Lely\T4C\Bin\T4CServices.exe
PRC - [2017.07.25 18:08:32 | 001,536,208 | ---- | M] (Microsoft Corporation) -- C:\Users\Uzivatel\AppData\Local\Microsoft\OneDrive\OneDrive.exe
PRC - [2017.05.22 18:42:09 | 001,787,904 | ---- | M] (Lely Industries N.V.) -- C:\Program Files\Lely\T4C\Bin\T4CSynchroniser.exe
PRC - [2017.05.22 18:41:40 | 000,010,752 | ---- | M] (Lely Industries N.V.) -- C:\Program Files\Lely\T4C\Bin\LelyPDF.Service.exe
PRC - [2017.05.22 18:35:50 | 000,035,840 | ---- | M] (Lely Industries N.V.) -- C:\Program Files\Lely\T4C\Bin\T4CCalmSynchroniser.exe
PRC - [2017.05.22 18:35:43 | 000,317,440 | ---- | M] (Lely Industries N.V.) -- C:\Program Files\Lely\T4C\Bin\T4CServiceManager.exe
PRC - [2017.05.22 18:35:03 | 000,099,840 | ---- | M] () -- C:\Program Files\Lely\T4C\Bin\NedapCowLocator.exe
PRC - [2017.05.22 18:33:18 | 000,031,232 | ---- | M] (Lely Industries N.V.) -- C:\Program Files\Lely\T4C\Bin\BackupService.exe
PRC - [2017.05.22 18:32:10 | 000,135,680 | ---- | M] () -- C:\Program Files\Lely\T4C\T4CMobileApi\T4C.Api.Service.exe
PRC - [2017.04.04 06:34:00 | 000,145,920 | ---- | M] () -- C:\Program Files\MoomlAgent\MoomlAgent.exe
PRC - [2017.02.23 14:16:59 | 000,023,040 | ---- | M] () -- C:\Program Files\Lely\T4C\AFSSynch\AFSSynchronizer.exe
PRC - [2016.11.14 21:30:32 | 000,280,864 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\NisSrv.exe
PRC - [2016.11.14 21:30:32 | 000,103,696 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\MsMpEng.exe
PRC - [2016.11.14 21:01:22 | 001,002,984 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2016.08.29 16:55:07 | 002,972,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2016.07.05 14:35:44 | 000,210,432 | ---- | M] (Geek Software GmbH) -- C:\Program Files\PDF24\pdf24.exe
PRC - [2015.09.11 17:45:12 | 015,863,568 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\TeamViewer.exe
PRC - [2015.09.11 17:45:12 | 005,697,296 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\TeamViewer_Service.exe
PRC - [2015.09.11 17:22:54 | 000,230,672 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\tv_w32.exe
PRC - [2014.11.21 04:12:44 | 000,626,688 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
PRC - [2014.11.21 04:12:38 | 000,212,992 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
PRC - [2014.11.05 15:09:23 | 000,207,360 | ---- | M] (Lely) -- C:\Program Files\Lely\T4C.Mobile\NetworkConnector\NetworkConnector.exe
PRC - [2013.12.18 20:42:32 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013.12.05 12:30:40 | 001,915,720 | ---- | M] (Neowise) -- C:\Program Files\RoboTask Lite\RoboTaskLite.exe
PRC - [2013.07.26 07:48:28 | 000,196,624 | ---- | M] (Nitro PDF Software) -- C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe
PRC - [2013.04.15 16:00:58 | 000,692,328 | ---- | M] (Juniper Networks) -- C:\Program Files\Juniper Networks\Common Files\dsNcService.exe
PRC - [2012.11.23 04:48:41 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2011.02.23 18:09:20 | 001,128,448 | ---- | M] (VIT-PCS GmbH) -- C:\Program Files\FoersterTechnik\KM2\kalbmanager_srv.exe
PRC - [2010.08.11 17:49:36 | 000,094,208 | ---- | M] (Lely) -- C:\Program Files\Lely\T4C\Bin\T4CNService.exe
PRC - [2010.02.15 19:58:46 | 000,090,112 | ---- | M] (LELY) -- C:\Program Files\Lely\T4C\Bin\LFWLogService.exe
PRC - [2009.08.04 17:29:54 | 000,219,360 | ---- | M] (DeviceVM, Inc.) -- C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
PRC - [2009.08.04 17:29:52 | 000,346,320 | ---- | M] (DeviceVM, Inc.) -- C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe
PRC - [2009.07.30 17:51:02 | 000,068,136 | ---- | M] () -- C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe
PRC - [2009.07.14 03:14:41 | 000,354,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\StikyNot.exe
PRC - [2009.07.14 03:14:21 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inetsrv\inetinfo.exe
PRC - [2009.06.04 19:03:32 | 000,186,904 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2009.06.04 19:03:06 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
========== Modules (No Company Name) ==========
MOD - [2017.06.20 04:49:35 | 011,935,232 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\4fa6f3e9feeb99941005249d6ca0e1a0\System.Web.ni.dll
MOD - [2017.06.20 04:49:28 | 000,774,144 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\dc54926c6f6670ac15aaef4b51bce371\System.Runtime.Remoting.ni.dll
MOD - [2017.06.20 04:49:03 | 012,437,504 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\5e483d1c8e1b4fb94c286b244121fd1a\System.Windows.Forms.ni.dll
MOD - [2017.06.20 04:48:56 | 001,593,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\5daf2d5bc9cfe64bff8b6d07eb1aab27\System.Drawing.ni.dll
MOD - [2017.06.20 04:48:52 | 005,467,648 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\5c2dbe5ae878a787d78751b24a03a4d5\System.Xml.ni.dll
MOD - [2017.06.20 04:48:48 | 000,978,432 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\18a2276fe5da130b691454f0517e8df6\System.Configuration.ni.dll
MOD - [2017.06.20 04:48:34 | 008,003,072 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\7af96fc80fba1e1f7d17a686f5e9bdd8\System.ni.dll
MOD - [2017.06.20 04:48:14 | 011,500,544 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\9f895c66454577eff9c77442d0c84f71\mscorlib.ni.dll
MOD - [2017.06.20 04:42:27 | 000,522,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Net.Http\1a1cc225b34690070dd1c2998069255e\System.Net.Http.ni.dll
MOD - [2017.06.20 04:42:23 | 019,939,328 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\2db768fdc0ca1f00d5f3488c963ad190\System.ServiceModel.ni.dll
MOD - [2017.06.20 04:42:08 | 000,395,776 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Linq\d74a2ce554547ea112ddc70e4935db81\System.Xml.Linq.ni.dll
MOD - [2017.06.20 04:31:43 | 001,904,640 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Web.Services\85bab0750b3715ed0d6792969a06b13f\System.Web.Services.ni.dll
MOD - [2017.06.20 04:31:42 | 013,918,720 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Web\fedcb80b0d828ade79342bfb23ee370a\System.Web.ni.dll
MOD - [2017.06.20 04:31:40 | 001,172,992 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Data86569bbf#\e5340ad6b73223dd05f7a4408de618fc\System.Data.OracleClient.ni.dll
MOD - [2017.06.20 04:31:40 | 000,252,928 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Comp46f2b404#\3ccaf2f81c392aa94b758d31540e4409\System.ComponentModel.DataAnnotations.ni.dll
MOD - [2017.06.20 04:31:36 | 000,769,536 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Ente96d83b35#\e40a165b5544a461ccb50ba34b6673ac\System.EnterpriseServices.ni.dll
MOD - [2017.06.20 04:31:36 | 000,251,904 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runt19c51595#\22a6be8edf37d9b6ec0e5803d16dd6a0\System.Runtime.Caching.ni.dll
MOD - [2017.06.20 04:31:36 | 000,243,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Ente96d83b35#\e40a165b5544a461ccb50ba34b6673ac\System.EnterpriseServices.Wrapper.dll
MOD - [2017.06.20 04:31:35 | 000,719,360 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Transactions\380681c1f99aca2a3a01ef5d2347ace4\System.Transactions.ni.dll
MOD - [2017.06.20 04:31:34 | 000,809,472 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runt73a1fc9d#\7fa7dc8ca35b62b81a1f33bcae7d2ee8\System.Runtime.Remoting.ni.dll
MOD - [2017.06.20 04:31:30 | 007,966,208 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Data\537b63e1fe3e0eca6d83964a4d01281a\System.Data.ni.dll
MOD - [2017.06.20 04:31:28 | 013,564,416 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\30da8fa10e06e0f8e06a23dd42775744\System.Windows.Forms.ni.dll
MOD - [2017.06.20 04:31:20 | 002,841,088 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\9c544e977c420f7a94f0892097b8a6a7\System.Runtime.Serialization.ni.dll
MOD - [2017.06.20 04:31:20 | 001,645,568 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\161bf26ea58a00810515847a2c551741\System.Drawing.ni.dll
MOD - [2017.06.20 04:31:19 | 000,802,304 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Servd1dec626#\8668b61d526100cf5acb802c57f29f9c\System.ServiceModel.Internals.ni.dll
MOD - [2017.06.20 04:31:19 | 000,118,272 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\67849d7735cb99c03d3a8add69b211b4\SMDiagnostics.ni.dll
MOD - [2017.06.20 04:31:08 | 000,993,792 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\46a1c421b74e2db0acf8f48f96fcc460\System.Configuration.ni.dll
MOD - [2017.06.20 04:31:02 | 010,906,624 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Design\9b7f8dcb646ac3797424056bd6a0e0fb\System.Design.ni.dll
MOD - [2017.06.20 04:30:57 | 007,576,064 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\3d3f60c73523fe26dafd69911d7a0e02\System.Xml.ni.dll
MOD - [2017.06.20 04:30:54 | 007,684,096 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\9b3323c270e11b1c7785ed988e60ff92\System.Core.ni.dll
MOD - [2017.06.20 04:30:48 | 010,336,768 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\7f93837e87869a6f9b9c7d21e544bd78\System.ni.dll
MOD - [2017.06.20 04:30:43 | 000,273,920 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Numerics\ded4c301a3f6a9c519ffdea2d351fb35\System.Numerics.ni.dll
MOD - [2017.06.20 04:30:41 | 020,491,776 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\c63857e47a917e45ff227d52324d08a1\mscorlib.ni.dll
MOD - [2017.04.04 06:34:00 | 000,145,920 | ---- | M] () -- C:\Program Files\MoomlAgent\MoomlAgent.exe
MOD - [2010.11.13 04:37:08 | 000,425,984 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Windows.Forms.resources\2.0.0.0_cs_b77a5c561934e089\System.Windows.Forms.resources.dll
MOD - [2010.11.13 03:54:19 | 000,303,104 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_cs_b77a5c561934e089\mscorlib.resources.dll
MOD - [2010.08.25 07:33:04 | 001,695,744 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager2.Graphics.Wizard\2.0.3561.39197__90ba9c70f846762e\CLI.Aspect.DisplaysManager2.Graphics.Wizard.dll
MOD - [2010.08.25 07:33:04 | 000,364,544 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.3561.39032__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll
MOD - [2010.08.25 07:33:04 | 000,204,800 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Wizard\2.0.3561.39058__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Wizard.dll
MOD - [2010.08.25 07:33:04 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard\2.0.3561.39051__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.dll
MOD - [2010.08.25 07:33:04 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Runtime\2.0.3561.39043__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll
MOD - [2010.08.25 07:33:04 | 000,011,776 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.HydraVision.Runtime\2.0.3561.39171__90ba9c70f846762e\CLI.Caste.HydraVision.Runtime.dll
MOD - [2010.08.25 07:33:04 | 000,008,704 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.HydraVision.Shared\2.0.3561.39171__90ba9c70f846762e\CLI.Caste.HydraVision.Shared.dll
MOD - [2010.08.25 07:33:04 | 000,007,680 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.HydraVision.Wizard\2.0.3561.39177__90ba9c70f846762e\CLI.Caste.HydraVision.Wizard.dll
MOD - [2010.08.25 07:33:04 | 000,007,680 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.HydraVision.Dashboard\2.0.3561.39171__90ba9c70f846762e\CLI.Caste.HydraVision.Dashboard.dll
MOD - [2010.08.25 07:33:03 | 000,491,520 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Wizard\2.0.3561.39154__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Wizard.dll
MOD - [2010.08.25 07:33:03 | 000,077,824 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Runtime\2.0.3561.39129__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Runtime.dll
MOD - [2010.08.25 07:33:03 | 000,073,728 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard\2.0.3561.39042__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.dll
MOD - [2010.08.25 07:33:03 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Runtime\2.0.3561.39101__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Runtime.dll
MOD - [2010.08.25 07:33:03 | 000,036,864 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Runtime\2.0.3561.39088__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll
MOD - [2010.08.25 07:33:02 | 000,356,352 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Dashboard\2.0.3561.39109__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll
MOD - [2010.08.25 07:33:02 | 000,094,208 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Wizard\2.0.3561.39110__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Wizard.dll
MOD - [2010.08.25 07:33:02 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Runtime\2.0.3561.39108__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Runtime.dll
MOD - [2010.08.25 07:33:02 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Dashboard\2.0.3561.39156__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Dashboard.dll
MOD - [2010.08.25 07:33:01 | 001,122,304 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager2.Graphics.Dashboard\2.0.3561.39193__90ba9c70f846762e\CLI.Aspect.DisplaysManager2.Graphics.Dashboard.dll
MOD - [2010.08.25 07:33:01 | 000,823,296 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Dashboard\2.0.3561.39091__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Dashboard.dll
MOD - [2010.08.25 07:33:01 | 000,643,072 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.OverDrive5.Graphics.Dashboard\2.0.3561.39169__90ba9c70f846762e\CLI.Aspect.OverDrive5.Graphics.Dashboard.dll
MOD - [2010.08.25 07:33:01 | 000,573,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Dashboard\2.0.3561.39060__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll
MOD - [2010.08.25 07:33:01 | 000,409,600 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Wizard\2.0.3561.39122__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Wizard.dll
MOD - [2010.08.25 07:33:01 | 000,196,608 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Dashboard\2.0.3561.39058__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll
MOD - [2010.08.25 07:33:01 | 000,094,208 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Runtime\2.0.3561.39090__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Runtime.dll
MOD - [2010.08.25 07:33:01 | 000,094,208 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Dashboard\2.0.3561.39098__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll
MOD - [2010.08.25 07:33:01 | 000,077,824 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.OverDrive5.Graphics.Runtime\2.0.3561.39168__90ba9c70f846762e\CLI.Aspect.OverDrive5.Graphics.Runtime.dll
MOD - [2010.08.25 07:33:01 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Runtime\2.0.3561.39097__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll
MOD - [2010.08.25 07:33:00 | 000,393,216 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Dashboard\2.0.3561.39090__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll
MOD - [2010.08.25 07:33:00 | 000,360,448 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Dashboard\2.0.3561.39084__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll
MOD - [2010.08.25 07:33:00 | 000,270,336 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
MOD - [2010.08.25 07:33:00 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Runtime\2.0.3561.39089__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll
MOD - [2010.08.25 07:33:00 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Runtime\2.0.3561.39064__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll
MOD - [2010.08.25 07:33:00 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Runtime\2.0.3561.39090__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll
MOD - [2010.08.25 07:33:00 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Runtime\2.0.3561.39099__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll
MOD - [2010.08.25 07:33:00 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.3552.27105__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll
MOD - [2010.08.25 07:33:00 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared\2.0.3552.27103__90ba9c70f846762e\AEM.Actions.CCAA.Shared.dll
MOD - [2010.08.25 07:33:00 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.WinMessages.Shared\2.0.3552.27220__90ba9c70f846762e\AEM.Plugin.WinMessages.Shared.dll
MOD - [2010.08.25 07:33:00 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.REG.Shared\2.0.3552.27317__90ba9c70f846762e\AEM.Plugin.REG.Shared.dll
MOD - [2010.08.25 07:33:00 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2.0.3552.27306__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll
MOD - [2010.08.25 07:33:00 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.EEU.Shared\2.0.3552.27206__90ba9c70f846762e\AEM.Plugin.EEU.Shared.dll
MOD - [2010.08.25 07:32:59 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation\2.0.3552.26984__90ba9c70f846762e\LOG.Foundation.dll
MOD - [2010.08.25 07:32:59 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.3552.26991__90ba9c70f846762e\NEWAEM.Foundation.dll
MOD - [2010.08.25 07:32:59 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0703\2.0.2651.18802__90ba9c70f846762e\DEM.Graphics.I0703.dll
MOD - [2010.08.25 07:32:59 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\MOM.Foundation\2.0.3552.27197__90ba9c70f846762e\MOM.Foundation.dll
MOD - [2010.08.25 07:32:59 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0706\2.0.2743.23304__90ba9c70f846762e\DEM.Graphics.I0706.dll
MOD - [2010.08.25 07:32:59 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.3552.27300__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll
MOD - [2010.08.25 07:32:59 | 000,007,168 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\atixclib\1.0.0.0__90ba9c70f846762e\atixclib.dll
MOD - [2010.08.25 07:32:58 | 000,139,264 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.3552.27161__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll
MOD - [2010.08.25 07:32:58 | 000,098,304 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation\2.0.3552.27021__90ba9c70f846762e\CLI.Foundation.dll
MOD - [2010.08.25 07:32:58 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.OverDrive5.Graphics.Shared\2.0.3552.27311__90ba9c70f846762e\CLI.Aspect.OverDrive5.Graphics.Shared.dll
MOD - [2010.08.25 07:32:58 | 000,057,344 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Shared\2.0.3552.27257__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Shared.dll
MOD - [2010.08.25 07:32:58 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0.2573.17685__90ba9c70f846762e\DEM.Graphics.I0601.dll
MOD - [2010.08.25 07:32:58 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Shared\2.0.3552.27288__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Shared.dll
MOD - [2010.08.25 07:32:58 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.3552.27381__90ba9c70f846762e\CLI.Foundation.XManifest.dll
MOD - [2010.08.25 07:32:58 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared\2.0.3552.27119__90ba9c70f846762e\CLI.Component.Dashboard.Shared.dll
MOD - [2010.08.25 07:32:58 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.3552.27139__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll
MOD - [2010.08.25 07:32:58 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.3552.27059__90ba9c70f846762e\CLI.Component.Client.Shared.dll
MOD - [2010.08.25 07:32:58 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics\2.0.3552.27237__90ba9c70f846762e\DEM.Graphics.dll
MOD - [2010.08.25 07:32:58 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Foundation\2.0.2573.17684__90ba9c70f846762e\DEM.Foundation.dll
MOD - [2010.08.25 07:32:58 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.3552.27169__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll
MOD - [2010.08.25 07:32:58 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard.Shared\2.0.3552.27242__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.Shared.dll
MOD - [2010.08.25 07:32:58 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard.Shared\2.0.3552.27179__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.Shared.dll
MOD - [2010.08.25 07:32:57 | 000,651,264 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ResourceManagement.Foundation.Implementation\2.0.3561.39190__90ba9c70f846762e\ResourceManagement.Foundation.Implementation.dll
MOD - [2010.08.25 07:32:57 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Shared\2.0.3552.27258__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Shared.dll
MOD - [2010.08.25 07:32:57 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Shared\2.0.3552.27249__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Shared.dll
MOD - [2010.08.25 07:32:57 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Shared\2.0.3552.27248__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Shared.dll
MOD - [2010.08.25 07:32:57 | 000,049,152 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Shared\2.0.3552.27248__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Shared.dll
MOD - [2010.08.25 07:32:57 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.3561.39162__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll
MOD - [2010.08.25 07:32:57 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Shared\2.0.3552.27255__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Shared.dll
MOD - [2010.08.25 07:32:57 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Shared\2.0.3552.27219__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Shared.dll
MOD - [2010.08.25 07:32:57 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Shared\2.0.3552.27244__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll
MOD - [2010.08.25 07:32:57 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Shared\2.0.3552.27239__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Shared.dll
MOD - [2010.08.25 07:32:57 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CustomFormats.Graphics.Shared\2.0.3552.27198__90ba9c70f846762e\CLI.Aspect.CustomFormats.Graphics.Shared.dll
MOD - [2010.08.25 07:32:57 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Shared\2.0.3552.27251__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll
MOD - [2010.08.25 07:32:57 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Shared\2.0.3552.27208__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll
MOD - [2010.08.25 07:32:57 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\APM.Foundation\2.0.3552.27204__90ba9c70f846762e\APM.Foundation.dll
MOD - [2010.08.25 07:32:57 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Server.Shared\2.0.3552.27107__90ba9c70f846762e\AEM.Server.Shared.dll
MOD - [2010.08.25 07:32:57 | 000,007,168 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Extension.EEU\2.0.3561.39028__90ba9c70f846762e\CLI.Component.Runtime.Extension.EEU.dll
MOD - [2010.08.25 07:32:56 | 000,561,152 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Systemtray\2.0.3561.39141__90ba9c70f846762e\CLI.Component.Systemtray.dll
MOD - [2010.08.25 07:32:56 | 000,405,504 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.3561.39050__90ba9c70f846762e\CLI.Component.Wizard.dll
MOD - [2010.08.25 07:32:56 | 000,106,496 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\MOM.Implementation\2.0.3561.39147__90ba9c70f846762e\MOM.Implementation.dll
MOD - [2010.08.25 07:32:56 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3561.39145__90ba9c70f846762e\LOG.Foundation.Implementation.dll
MOD - [2010.08.25 07:32:56 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.3552.27044__90ba9c70f846762e\CLI.Foundation.Private.dll
MOD - [2010.08.25 07:32:56 | 000,036,864 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.3552.27085__90ba9c70f846762e\LOG.Foundation.Private.dll
MOD - [2010.08.25 07:32:56 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.3552.27184__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll
MOD - [2010.08.25 07:32:56 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ResourceManagement.Foundation.Private\2.0.3552.27098__90ba9c70f846762e\ResourceManagement.Foundation.Private.dll
MOD - [2010.08.25 07:32:56 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.3552.27177__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll
MOD - [2010.08.25 07:32:55 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.3561.39029__90ba9c70f846762e\CLI.Component.Runtime.dll
MOD - [2010.08.25 07:32:55 | 000,057,344 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.SkinFactory\2.0.3561.39031__90ba9c70f846762e\CLI.Component.SkinFactory.dll
MOD - [2010.08.25 07:32:55 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.3552.27176__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll
MOD - [2010.08.25 07:32:55 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared.Private\2.0.3552.27195__90ba9c70f846762e\CLI.Component.Dashboard.Shared.Private.dll
MOD - [2010.08.25 07:32:54 | 001,220,608 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard\2.0.3561.39038__90ba9c70f846762e\CLI.Component.Dashboard.dll
MOD - [2010.08.25 07:32:54 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\APM.Server\2.0.3561.39027__90ba9c70f846762e\APM.Server.dll
MOD - [2010.08.25 07:32:54 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.3552.27135__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll
MOD - [2010.08.25 07:32:54 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll
MOD - [2010.08.25 07:32:54 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime.Shared.Private\2.0.3552.27265__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.Shared.Private.dll
MOD - [2010.08.25 07:32:54 | 000,019,456 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CCC.Implementation\2.0.3561.39147__90ba9c70f846762e\CCC.Implementation.dll
MOD - [2010.08.25 07:32:53 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Server\2.0.3561.39028__90ba9c70f846762e\AEM.Server.dll
MOD - [2009.10.01 16:45:50 | 000,016,384 | R--- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll
MOD - [2009.07.30 18:15:32 | 000,503,202 | ---- | M] () -- C:\Program Files\DeviceVM\Browser Configuration Utility\sqlite3.dll
========== Services (SafeList) ==========
SRV - [2017.08.26 04:31:40 | 000,175,568 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2017.08.09 05:05:11 | 000,272,384 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2017.08.01 16:23:11 | 000,198,144 | ---- | M] (Lely Industries N.V.) [Auto | Running] -- C:\Program Files\Lely\T4C\Bin\T4CServices.exe -- (T4CGenerator)
SRV - [2017.05.22 18:42:09 | 001,787,904 | ---- | M] (Lely Industries N.V.) [Auto | Running] -- C:\Program Files\Lely\T4C\Bin\T4CSynchroniser.exe -- (T4CDevSynch)
SRV - [2017.05.22 18:41:40 | 000,010,752 | ---- | M] (Lely Industries N.V.) [Auto | Running] -- C:\Program Files\Lely\T4C\Bin\LelyPDF.Service.exe -- (T4CDLM)
SRV - [2017.05.22 18:35:50 | 000,035,840 | ---- | M] (Lely Industries N.V.) [Auto | Running] -- C:\Program Files\Lely\T4C\Bin\T4CCalmSynchroniser.exe -- (T4CCalmSynch)
SRV - [2017.05.22 18:35:03 | 000,099,840 | ---- | M] () [Auto | Running] -- C:\Program Files\Lely\T4C\Bin\NedapCowLocator.exe -- (NedapLDService)
SRV - [2017.05.22 18:33:18 | 000,031,232 | ---- | M] (Lely Industries N.V.) [Auto | Running] -- C:\Program Files\Lely\T4C\Bin\BackupService.exe -- (T4CBackup)
SRV - [2017.05.22 18:32:10 | 000,135,680 | ---- | M] () [Auto | Running] -- C:\Program Files\Lely\T4C\T4CMobileApi\T4C.Api.Service.exe -- (T4CApiService)
SRV - [2017.02.23 14:16:59 | 000,023,040 | ---- | M] () [Auto | Running] -- C:\Program Files\Lely\T4C\AFSSynch\AFSSynchronizer.exe -- (AFSSynchronizer)
SRV - [2016.11.14 21:30:32 | 000,280,864 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV - [2016.11.14 21:30:32 | 000,103,696 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2016.08.21 15:05:24 | 000,935,424 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\diagtrack.dll -- (DiagTrack)
SRV - [2015.09.11 17:45:12 | 005,697,296 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files\TeamViewer\TeamViewer_Service.exe -- (TeamViewer)
SRV - [2014.11.21 04:12:38 | 000,212,992 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2014.09.01 11:18:46 | 000,007,168 | ---- | M] (Microsoft) [Disabled | Stopped] -- C:\Program Files\SCR\LDService\SCRLDService.exe -- (SCRLDService)
SRV - [2013.12.18 20:42:32 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013.07.26 07:48:28 | 000,196,624 | ---- | M] (Nitro PDF Software) [Auto | Running] -- C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe -- (NitroReaderDriverReadSpool3)
SRV - [2013.05.27 06:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2013.04.15 16:00:58 | 000,692,328 | ---- | M] (Juniper Networks) [Auto | Running] -- C:\Program Files\Juniper Networks\Common Files\dsNcService.exe -- (dsNcService)
SRV - [2012.06.01 06:36:46 | 000,310,272 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\inetsrv\ftpsvc.dll -- (ftpsvc)
SRV - [2010.11.20 14:19:20 | 000,397,824 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\inetsrv\iisw3adm.dll -- (WAS)
SRV - [2010.11.20 14:19:20 | 000,397,824 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\inetsrv\iisw3adm.dll -- (W3SVC)
SRV - [2010.11.20 14:18:03 | 000,061,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\inetsrv\apphostsvc.dll -- (AppHostSvc)
SRV - [2010.08.26 09:06:21 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2010.08.11 17:49:36 | 000,094,208 | ---- | M] (Lely) [Auto | Running] -- C:\Program Files\Lely\T4C\Bin\T4CNService.exe -- (LDNService)
SRV - [2010.02.15 19:58:46 | 000,090,112 | ---- | M] (LELY) [Auto | Running] -- C:\Program Files\Lely\T4C\Bin\LFWLogService.exe -- (LFWLogService)
SRV - [2009.08.04 17:29:54 | 000,219,360 | ---- | M] (DeviceVM, Inc.) [Auto | Running] -- C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe -- (BCUService)
SRV - [2009.07.30 17:51:02 | 000,068,136 | ---- | M] () [Auto | Running] -- C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe -- (GEST Service)
SRV - [2009.07.14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009.07.14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009.07.14 03:14:48 | 000,009,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\inetsrv\WMSvc.exe -- (WMSVC)
SRV - [2009.07.14 03:14:21 | 000,013,824 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\inetsrv\inetinfo.exe -- (IISADMIN)
SRV - [2009.06.04 19:03:06 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\SWDUMon.sys -- (SWDUMon)
DRV - File not found [Kernel | System | Stopped] -- c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{F304C7CA-C10A-4A83-9C32-E3BAF39ED099}\MpKsl96de6ffb.sys -- (MpKsl96de6ffb)
DRV - [2017.09.01 11:45:48 | 000,017,488 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\gdrv.sys -- (gdrv)
DRV - [2017.08.28 04:10:10 | 000,135,760 | ---- | M] (ESET) [Kernel | On_Demand | Stopped] -- C:\Users\Uzivatel\AppData\Local\Temp\ehdrv.sys -- (eapihdrv)
DRV - [2017.07.04 10:45:50 | 000,112,000 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\wfcre.sys -- (wfcre)
DRV - [2016.08.25 10:46:12 | 000,105,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2016.03.01 05:55:32 | 000,087,568 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AtihdW73.sys -- (AtiHDAudioService)
DRV - [2015.03.30 00:54:16 | 000,250,152 | ---- | M] (Microsoft Corporation) [File_System | Disabled | Stopped] -- C:\Windows\System32\drivers\RsFx0153.sys -- (RsFx0153)
DRV - [2014.11.21 04:38:32 | 016,955,392 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2014.11.21 04:38:32 | 016,955,392 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (amdkmdag)
DRV - [2014.11.21 04:08:48 | 000,472,576 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmpag.sys -- (amdkmdap)
DRV - [2014.06.13 10:53:53 | 000,320,120 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sptd.sys -- (sptd)
DRV - [2013.10.02 02:42:31 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2013.04.15 15:38:30 | 000,026,624 | ---- | M] (Juniper Networks) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\dsNcAdpt.sys -- (dsNcAdpt)
DRV - [2012.08.23 16:44:32 | 000,014,848 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2010.11.20 14:30:15 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010.11.20 14:30:15 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010.11.20 14:30:15 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010.11.20 11:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010.11.20 11:14:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010.11.20 11:14:41 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2009.09.30 16:33:56 | 000,104,976 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV - [2009.07.14 00:02:52 | 000,190,464 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\e1q6032.sys -- (e1qexpress)
DRV - [2009.02.13 11:02:52 | 000,011,520 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wdcsam.sys -- (WDC_SAM)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-893007568-957827634-3976518877-1000\SOFTWARE\Microsoft\Internet Explorer\Main,IE11UpgradePageShownTime = 05 0E 26 38 94 21 D3 01 [binary data]
IE - HKU\S-1-5-21-893007568-957827634-3976518877-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKU\S-1-5-21-893007568-957827634-3976518877-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-893007568-957827634-3976518877-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE10SR
IE - HKU\S-1-5-21-893007568-957827634-3976518877-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.countryCode: "CZ"
FF - prefs.js..browser.search.defaultengine: "Google"
FF - prefs.js..browser.search.defaultthis.engineName: "Google"
FF - prefs.js..browser.search.defaulturl: "http://www.google.com/search?ie=UTF-8&oe=utf-8&q="
FF - prefs.js..browser.search.isUS: false
FF - prefs.js..browser.search.order.1: "Google"
FF - prefs.js..browser.search.region: "CZ"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..keyword.URL: "http://www.google.com/search?ie=UTF-8&oe=utf-8&q="
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_26_0_0_151.dll ()
FF - HKLM\Software\MozillaPlugins\@alawar.com/npapi: C:\Windows\npapi.dll (Alawar)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.31.2: C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.31.2: C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nitropdf.com/NitroPDF: C:\Program Files\Nitro\Reader 3\npnitromozilla.dll (Nitro PDF)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.1: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\www.exent.com/GameTreatWidget: File not found
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Uzivatel\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\www.exent.com/GameTreatWidget: C:\Program Files\Free Ride Games\npGameTreatWidget.dll File not found
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 55.0.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 55.0.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
[2012.09.02 11:31:12 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Uzivatel\AppData\Roaming\Mozilla\Extensions
[2017.05.26 07:12:44 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\ribyj95t.default\browser-extension-data
[2017.05.26 07:12:44 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\ribyj95t.default\browser-extension-data\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2017.08.30 18:02:50 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\ribyj95t.default\extensions
[2017.08.30 14:36:49 | 000,000,000 | ---D | M] (Seznam lištička) -- C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\ribyj95t.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[2017.05.09 04:54:22 | 000,788,307 | ---- | M] () (No name found) -- C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\ribyj95t.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi
[2017.06.08 06:36:21 | 001,059,016 | ---- | M] () (No name found) -- C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\ribyj95t.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2017.08.26 07:19:21 | 000,329,275 | ---- | M] () (No name found) -- C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\ribyj95t.default\features\{36f754ad-f8c6-4995-b9f0-bf5d1c1d927e}\screenshots@mozilla.org.xpi
[2017.08.26 04:31:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
========== Chrome ==========
CHR - Extension: No name found = C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\
CHR - Extension: No name found = C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\
CHR - Extension: No name found = C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\
CHR - Extension: No name found = C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0\
CHR - Extension: No name found = C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_0\
CHR - Extension: No name found = C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.3_0\
CHR - Extension: No name found = C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\
CHR - Extension: No name found = C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6017.605.1.4_0\
O1 HOSTS File: ([2009.06.10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (no name) - {d40c654d-7c51-4eb3-95b2-1e23905c2a2d} - No CLSID value found.
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-893007568-957827634-3976518877-1000\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\S-1-5-21-893007568-957827634-3976518877-1000\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [BCU] C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe (DeviceVM, Inc.)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [PDFPrint] C:\Program Files\PDF24\pdf24.exe (Geek Software GmbH)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKU\S-1-5-21-893007568-957827634-3976518877-1000..\Run: [OneDrive] C:\Users\Uzivatel\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-893007568-957827634-3976518877-1000..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-893007568-957827634-3976518877-1000..\Run: [RoboTask Lite] C:\Program Files\RoboTask Lite\RoboTaskLite.exe (Neowise)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - Startup: C:\Users\Uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MoomlAgent.lnk = C:\Program Files\MoomlAgent\MoomlAgent.exe ()
O4 - Startup: C:\Users\Uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\NetworkConnector.lnk = C:\Program Files\Lely\T4C.Mobile\NetworkConnector\NetworkConnector.exe (Lely)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 28
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 1
O7 - HKU\S-1-5-21-893007568-957827634-3976518877-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-893007568-957827634-3976518877-1000\..Trusted Domains: localhost ([]http in Internet)
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 82.163.143.176 82.163.142.178
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2F0D9425-7021-467D-AF20-8293CA1AE176}: NameServer = 82.163.143.176 82.163.142.178
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8C827E41-1970-4E79-B480-8EAA63B58104}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8C827E41-1970-4E79-B480-8EAA63B58104}: NameServer = 82.163.143.176 82.163.142.178
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2017.09.01 19:25:13 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Uzivatel\Desktop\OTL.exe
[2017.09.01 15:17:16 | 001,792,512 | ---- | C] (Farbar) -- C:\Users\Uzivatel\Desktop\FRST.exe
[2017.09.01 11:46:27 | 000,000,000 | -H-D | C] -- C:\OneDriveTemp
[2017.08.30 16:25:55 | 000,000,000 | ---D | C] -- C:\ProgramData\panda_url_filtering
[2017.08.30 16:25:23 | 000,000,000 | ---D | C] -- C:\Users\Uzivatel\AppData\Roaming\Panda Security
[2017.08.30 16:23:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Panda Security
[2017.08.30 09:49:24 | 000,000,000 | ---D | C] -- C:\Users\Uzivatel\AppData\Local\AdAwareDesktop
[2017.08.28 15:03:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab Setup Files
[2017.08.27 15:40:54 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\AV
[2017.08.26 10:03:30 | 000,000,000 | ---D | C] -- C:\Users\Uzivatel\AppData\Local\CEF
[2017.08.26 10:02:30 | 000,921,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\ucrtbase.dll
[2017.08.24 18:55:16 | 000,000,000 | ---D | C] -- C:\ProgramData\e792d596-50c3-0
[2017.08.24 18:55:16 | 000,000,000 | ---D | C] -- C:\ProgramData\e792d596-31b5-1
[2017.08.24 18:55:06 | 000,000,000 | ---D | C] -- C:\ProgramData\82ff95ce
[2017.08.24 18:55:03 | 000,000,000 | ---D | C] -- C:\ProgramData\{D2DFF142-6574-46E9-469D-D015B619F058}
[2017.08.24 18:54:59 | 000,000,000 | ---D | C] -- C:\ProgramData\{67a045f1-512c-1}
[2017.08.24 18:54:59 | 000,000,000 | ---D | C] -- C:\ProgramData\{48d13e98-412c-0}
[2017.08.09 08:52:37 | 001,311,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjet40.dll
[2017.08.09 08:52:37 | 000,616,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrepl40.dll
[2017.08.09 08:52:37 | 000,475,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxbde40.dll
[2017.08.09 08:52:37 | 000,375,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mspbde40.dll
[2017.08.09 08:52:37 | 000,343,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrd3x40.dll
[2017.08.09 08:52:37 | 000,339,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msexcl40.dll
[2017.08.09 08:52:37 | 000,310,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrd2x40.dll
[2017.08.09 08:52:37 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjtes40.dll
[2017.08.09 08:52:37 | 000,240,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msltus40.dll
[2017.08.09 08:52:36 | 004,001,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2017.08.09 08:52:36 | 003,945,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2017.08.09 08:52:36 | 002,402,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2017.08.09 08:52:36 | 001,549,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tquery.dll
[2017.08.09 08:52:36 | 001,400,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssrch.dll
[2017.08.09 08:52:36 | 000,866,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mswdat10.dll
[2017.08.09 08:52:36 | 000,641,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mswstr10.dll
[2017.08.09 08:52:36 | 000,382,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wer.dll
[2017.08.09 08:52:36 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjint40.dll
[2017.08.09 08:52:36 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2017.08.09 08:52:36 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjter40.dll
[2017.08.09 08:52:36 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wermgr.exe
[2017.08.09 08:52:36 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\werdiagcontroller.dll
[2017.08.09 08:52:35 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssvp.dll
[2017.08.09 08:52:35 | 000,400,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srcore.dll
[2017.08.09 08:52:35 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssph.dll
[2017.08.09 08:52:35 | 000,262,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rstrui.exe
[2017.08.09 08:52:35 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
[2017.08.09 08:52:35 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssphtb.dll
[2017.08.09 08:52:35 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msaudite.dll
[2017.08.09 08:52:35 | 000,141,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rpchttp.dll
[2017.08.09 08:52:35 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssitlb.dll
[2017.08.09 08:52:35 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\appidpolicyconverter.exe
[2017.08.09 08:52:35 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bcrypt.dll
[2017.08.09 08:52:35 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscntrs.dll
[2017.08.09 08:52:35 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\appidapi.dll
[2017.08.09 08:52:35 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\setbcdlocale.dll
[2017.08.09 08:52:35 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\auditpol.exe
[2017.08.09 08:52:35 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll
[2017.08.09 08:52:35 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssprxy.dll
[2017.08.09 08:52:35 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\appidcertstorecheck.exe
[2017.08.09 08:52:35 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sspisrv.dll
[2017.08.09 08:52:35 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msshooks.dll
[2017.08.09 08:52:35 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\apisetschema.dll
[2017.08.09 08:52:34 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adtschema.dll
[2017.08.09 08:52:34 | 000,409,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msexch40.dll
[2017.08.09 08:52:34 | 000,282,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstext40.dll
[2017.08.09 08:52:34 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msobjs.dll
========== Files - Modified Within 30 Days ==========
[2017.09.01 19:29:41 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2017.09.01 19:25:21 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Uzivatel\Desktop\OTL.exe
[2017.09.01 15:23:49 | 000,008,319 | ---- | M] () -- C:\Users\Uzivatel\Desktop\Addition.zip
[2017.09.01 15:17:22 | 001,792,512 | ---- | M] (Farbar) -- C:\Users\Uzivatel\Desktop\FRST.exe
[2017.09.01 11:54:26 | 000,018,240 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2017.09.01 11:54:26 | 000,018,240 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2017.09.01 11:45:48 | 000,017,488 | ---- | M] (Windows (R) 2000 DDK provider) -- C:\Windows\gdrv.sys
[2017.09.01 11:45:42 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2017.09.01 11:45:40 | 2817,380,352 | -HS- | M] () -- C:\hiberfil.sys
[2017.09.01 11:42:45 | 000,000,308 | ---- | M] () -- C:\Windows\Brownie.ini
[2017.08.30 18:05:44 | 000,409,608 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2017.08.27 16:48:57 | 000,002,084 | ---- | M] () -- C:\Windows\wininit.ini
[2017.08.26 10:02:25 | 000,921,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\ucrtbase.dll
[2017.08.25 22:15:19 | 000,002,089 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2017.08.25 15:05:34 | 000,000,925 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2017.08.10 05:18:02 | 000,788,990 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2017.08.10 05:18:02 | 000,771,504 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2017.08.10 05:18:02 | 000,187,700 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2017.08.10 05:18:02 | 000,163,142 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2017.08.09 05:05:11 | 000,803,328 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2017.08.09 05:05:10 | 000,144,896 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
========== Files Created - No Company Name ==========
[2017.09.01 19:29:41 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2017.09.01 15:23:49 | 000,008,319 | ---- | C] () -- C:\Users\Uzivatel\Desktop\Addition.zip
[2017.09.01 15:17:36 | 000,112,640 | ---- | C] () -- C:\Users\Uzivatel\Desktop\FRSTLauncher.exe
[2017.08.27 16:12:20 | 000,002,084 | ---- | C] () -- C:\Windows\wininit.ini
[2017.07.04 10:45:50 | 000,112,000 | ---- | C] () -- C:\Windows\System32\drivers\wfcre.sys
[2017.06.14 14:47:50 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2017.01.26 13:24:17 | 000,000,600 | ---- | C] () -- C:\Users\Uzivatel\AppData\Local\PUTTY.RND
[2016.10.08 05:21:57 | 000,000,064 | ---- | C] () -- C:\Windows\GPlrLanc.dat
[2016.02.12 16:03:10 | 000,004,096 | ---- | C] () -- C:\Windows\d3dx.dat
[2014.02.20 17:41:39 | 000,306,157 | ---- | C] () -- C:\Users\Uzivatel\AppData\Roaming\log.sflog
[2013.09.21 05:12:42 | 000,002,237 | ---- | C] () -- C:\Users\Uzivatel\AppData\Local\recently-used.xbel
[2011.03.28 16:33:03 | 000,762,880 | -H-- | C] () -- C:\Users\Uzivatel\AppData\Roaming\base_en.db
[2011.01.20 18:27:40 | 000,007,597 | ---- | C] () -- C:\Users\Uzivatel\AppData\Local\Resmon.ResmonCfg
========== ZeroAccess Check ==========
[2009.07.14 06:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2017.05.10 17:12:47 | 012,880,896 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 14:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009.07.14 03:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== LOP Check ==========
[2015.10.05 09:28:52 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\.mono
[2015.02.04 08:26:05 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\8floor
[2012.08.07 06:07:04 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Alawar
[2013.01.04 17:24:38 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Alawar Entertainment
[2013.06.22 06:18:32 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Alawar Stargaze
[2016.03.09 06:30:31 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\AlawarEntertainment
[2012.06.09 05:16:25 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\aliasworlds
[2016.08.14 16:13:22 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\AMD
[2017.01.29 08:16:38 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Anvate Games
[2016.03.14 12:55:07 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Anvsoft
[2016.05.17 09:50:21 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Argali
[2012.10.27 04:59:24 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Artifex Mundi
[2013.05.21 07:01:05 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\AtlanticJourney
[2011.01.19 06:09:40 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\AVG10
[2011.09.25 07:23:35 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Awem
[2012.11.20 05:14:28 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Boolat Games
[2013.05.29 16:36:35 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Building the Great Wall of China Collectors Edition
[2012.02.20 07:45:42 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\CasualForge
[2014.10.26 17:49:37 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\CyberCradle
[2011.10.20 15:22:56 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\DAEMON Tools Lite
[2012.05.03 17:51:58 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\DieselPuppet
[2011.05.19 05:27:20 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\dingogames
[2017.02.10 05:48:02 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Downloaded Installations
[2013.08.30 16:03:55 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\EnchantedCavern
[2014.05.25 17:19:16 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\EnchantedCavern2
[2012.02.20 07:23:38 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\EscapeTheMuseum2
[2017.07.22 15:46:41 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Farm Mania
[2017.07.15 15:06:05 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Farm Mania 2
[2017.08.03 15:01:46 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Farm Mania 2.1
[2017.02.10 05:49:52 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\FileOpen
[2015.02.03 17:44:03 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Five-BN Games
[2016.02.21 05:52:00 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Floria
[2012.12.05 17:27:20 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Friday's games
[2014.11.08 17:09:27 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\FunnyGames
[2011.04.05 05:00:14 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\GHISLER
[2013.09.11 17:06:18 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\GO Games
[2012.03.31 14:38:14 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Happy Artist Studio
[2016.02.12 16:03:11 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\IteraLabs
[2012.08.01 05:26:42 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\JaiboGames
[2016.03.09 17:47:27 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Jewel Match 4_b
[2014.08.29 05:23:56 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Juniper Networks
[2013.04.14 06:36:47 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Klenoty Vychodoindicke spolecnosti
[2012.08.10 07:23:19 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\LegacyGames
[2016.09.04 07:02:19 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Legendary Mahjong
[2013.09.18 16:18:15 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Lonely Troops
[2011.11.28 06:51:11 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\md studio
[2015.09.18 11:18:04 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\MoomlAgent
[2016.05.10 14:38:14 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\MysteryTag
[2013.10.05 04:09:21 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\MythPeople
[2017.02.10 05:49:52 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Nitro
[2016.05.25 04:21:29 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Nordcurrent
[2015.12.31 05:55:40 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Opera Software
[2017.08.30 18:01:06 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Panda Security
[2011.03.28 16:34:20 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\PeaceCraft2
[2014.01.06 12:58:57 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Pirrit
[2012.03.23 06:48:04 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Princess Isabella
[2016.06.09 16:39:29 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\quickclick
[2016.09.07 09:43:22 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Rovio
[2016.09.07 13:56:08 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Rovio Entertainment Ltd
[2014.02.20 17:43:55 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\saves
[2012.02.20 06:25:51 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Settlement. Colossus
[2014.02.28 17:51:29 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Seznam.cz
[2016.10.08 05:30:32 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\SpinTop
[2014.01.06 16:07:41 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\systweak
[2014.01.06 12:58:56 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\T-App
[2013.03.15 06:30:05 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\tabagames
[2017.08.26 15:41:51 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\TeamViewer
[2016.05.08 05:23:22 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Teyon
[2012.02.23 18:12:00 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\thejoyoffarming
[2014.01.04 06:21:41 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\TOMI2.THE GATES OF FATE
[2012.12.28 17:23:05 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\TOMI3
[2013.10.29 16:28:58 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\TuneUp Software
[2015.02.17 11:54:52 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Unity
[2012.04.19 11:53:49 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\VendelGAMES
[2014.01.01 12:11:32 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\VOS
[2012.10.01 05:48:50 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\WeatherLord
[2013.04.14 06:36:43 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\WiiSports101in1
[2016.10.08 11:02:45 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\ZOG
========== Purity Check ==========
========== Custom Scans ==========
< >
[2009.07.14 06:53:46 | 000,032,616 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU(22).TXT
[2009.07.14 06:53:46 | 000,032,624 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2009.07.14 06:53:47 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
< >
< MD5 for: ATAPI.SYS >
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\drivers\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_a5025d31bee4647c\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_fab873f3e8a3315c\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_df3f92057fcbe7a7\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.18231_none_df26d4d57fdef5b0\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.22414_none_dfc9143c98e9a6c4\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2010.11.20 14:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\System32\autochk.exe
[2010.11.20 14:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe
< MD5 for: CDROM.SYS >
[2010.11.20 10:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\drivers\cdrom.sys
[2010.11.20 10:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_neutral_6381e09675524225\cdrom.sys
[2010.11.20 10:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_61b0c5ce02098355\cdrom.sys
< MD5 for: EXPLORER.EXE >
[2010.11.20 14:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_53bc10fdd7fe87ca\explorer.exe
[2016.08.29 16:55:07 | 002,972,672 | ---- | M] (Microsoft Corporation) MD5=6DDCA324434FFA506CF7DC4E51DB7935 -- C:\Windows\explorer.exe
[2016.08.29 16:55:07 | 002,972,672 | ---- | M] (Microsoft Corporation) MD5=6DDCA324434FFA506CF7DC4E51DB7935 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.23537_none_5432df58f129e196\explorer.exe
< MD5 for: HAL.DLL >
[2010.11.20 14:29:53 | 000,194,432 | ---- | M] (Microsoft Corporation) MD5=1BF0D4727FDB437D513CFF8A9359C050 -- C:\Windows\System32\hal.dll
[2010.11.20 14:29:53 | 000,194,432 | ---- | M] (Microsoft Corporation) MD5=1BF0D4727FDB437D513CFF8A9359C050 -- C:\Windows\winsxs\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_ad305c8fb7ec5060\hal.dll
< MD5 for: SCECLI.DLL >
[2010.11.20 14:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\System32\scecli.dll
[2010.11.20 14:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_3a154c47375d881d\scecli.dll
< MD5 for: SERVICES.EXE >
[2015.04.13 05:19:24 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=0780A42DBD7D9969F9BF4A19AA4285B5 -- C:\Windows\System32\services.exe
[2015.04.13 05:19:24 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=0780A42DBD7D9969F9BF4A19AA4285B5 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7601.18829_none_d1614ac32b8ec5cf\services.exe
[2009.07.14 03:14:36 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=5F1B6A9C35D3D5CA72D6D6FDEF9747D6 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_cf36168b2e9c967b\services.exe
[2015.04.11 05:53:55 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=97981140500E86E5BBAD7B76BA890146 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7601.23033_none_d1d9ee0844ba1cc2\services.exe
< MD5 for: SVCHOST.EXE >
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\System32\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
< MD5 for: TCPIP.SYS >
[2010.11.20 14:30:12 | 001,290,112 | ---- | M] (Microsoft Corporation) MD5=37E8FA3779668837CA9E2C36D2415949 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_b5257c3dc4a85a01\tcpip.sys
[2017.05.30 06:39:05 | 001,309,928 | ---- | M] (Microsoft Corporation) MD5=C25848DB4A86839A7EDD1077F62AD980 -- C:\Windows\System32\drivers\tcpip.sys
[2017.05.30 06:39:05 | 001,309,928 | ---- | M] (Microsoft Corporation) MD5=C25848DB4A86839A7EDD1077F62AD980 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.23821_none_b5a11e7addd0f747\tcpip.sys
[2016.07.07 17:20:44 | 001,309,928 | ---- | M] (Microsoft Corporation) MD5=C7E41209132B9CF084CCEA8593F61328 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.23496_none_b55a68e0de0544f5\tcpip.sys
[2012.10.03 18:44:01 | 001,308,040 | ---- | M] (Microsoft Corporation) MD5=D490DD0A91B4EAC3B4EE08D11EE37C31 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22124_none_b5a428d6ddce3d9a\tcpip.sys
[2012.10.03 18:58:30 | 001,293,680 | ---- | M] (Microsoft Corporation) MD5=E23A56F843E2AEBBB209D0ACCA73C640 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17964_none_b4ef7439c4d0da52\tcpip.sys
< MD5 for: USERINIT.EXE >
[2010.11.20 14:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\System32\userinit.exe
[2010.11.20 14:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
< MD5 for: WINLOGON.EXE >
[2014.07.16 04:56:14 | 000,304,640 | ---- | M] (Microsoft Corporation) MD5=4F37B93C14AEE313BEC52A23AFB15C2E -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.22750_none_7224b2134c7555fa\winlogon.exe
[2014.07.17 03:39:27 | 000,304,128 | ---- | M] (Microsoft Corporation) MD5=52449FD429D6053B78AE564DEF303870 -- C:\Windows\System32\winlogon.exe
[2014.07.17 03:39:27 | 000,304,128 | ---- | M] (Microsoft Corporation) MD5=52449FD429D6053B78AE564DEF303870 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.18540_none_71a5e34e334f9d18\winlogon.exe
[2010.11.20 14:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_71ca6b0233339500\winlogon.exe
[2014.03.04 11:17:02 | 000,304,128 | ---- | M] (Microsoft Corporation) MD5=998507B046BA314CE8245364C686FA67 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.18409_none_71da23b23327143c\winlogon.exe
[2014.03.04 12:39:02 | 000,304,640 | ---- | M] (Microsoft Corporation) MD5=D53972F87D850CD2EB4B29B60CAFDD77 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.22616_none_7255f1994c4f8119\winlogon.exe
< >
< %systemroot%*.* /U /s >
[7 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[3 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[1 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\t4c\2b70a639\17f1791b\*.tmp files -> C:\Windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\t4c\2b70a639\17f1791b\*.tmp -> ]
[1 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\t4c\c81c73ec\236a7478\*.tmp files -> C:\Windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\t4c\c81c73ec\236a7478\*.tmp -> ]
[2 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2015.10.05 09:28:52 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\.mono
[2015.02.04 08:26:05 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\8floor
[2015.09.18 11:15:13 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Adobe
[2012.08.07 06:07:04 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Alawar
[2013.01.04 17:24:38 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Alawar Entertainment
[2013.06.22 06:18:32 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Alawar Stargaze
[2016.03.09 06:30:31 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\AlawarEntertainment
[2012.06.09 05:16:25 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\aliasworlds
[2016.08.14 16:13:22 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\AMD
[2017.01.29 08:16:38 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Anvate Games
[2016.03.14 12:55:07 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Anvsoft
[2016.05.17 09:50:21 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Argali
[2012.10.27 04:59:24 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Artifex Mundi
[2010.08.25 07:34:46 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\ATI
[2013.05.21 07:01:05 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\AtlanticJourney
[2011.01.19 06:09:40 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\AVG10
[2011.09.25 07:23:35 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Awem
[2012.11.20 05:14:28 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Boolat Games
[2011.02.05 11:57:07 | 000,000,000 | R--D | M] -- C:\Users\Uzivatel\AppData\Roaming\Brother
[2013.05.29 16:36:35 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Building the Great Wall of China Collectors Edition
[2012.02.20 07:45:42 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\CasualForge
[2014.10.26 17:49:37 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\CyberCradle
[2011.10.20 15:22:56 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\DAEMON Tools Lite
[2012.05.03 17:51:58 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\DieselPuppet
[2011.05.19 05:27:20 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\dingogames
[2017.02.10 05:48:02 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Downloaded Installations
[2013.08.30 16:03:55 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\EnchantedCavern
[2014.05.25 17:19:16 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\EnchantedCavern2
[2012.02.20 07:23:38 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\EscapeTheMuseum2
[2017.07.22 15:46:41 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Farm Mania
[2017.07.15 15:06:05 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Farm Mania 2
[2017.08.03 15:01:46 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Farm Mania 2.1
[2017.02.10 05:49:52 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\FileOpen
[2015.02.03 17:44:03 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Five-BN Games
[2016.02.21 05:52:00 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Floria
[2012.12.05 17:27:20 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Friday's games
[2014.11.08 17:09:27 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\FunnyGames
[2011.04.05 05:00:14 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\GHISLER
[2013.09.11 17:06:18 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\GO Games
[2012.03.31 14:38:14 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Happy Artist Studio
[2010.08.27 18:57:20 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\HP
[2010.08.25 07:18:02 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Identities
[2010.08.25 07:25:39 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\InstallShield
[2016.02.12 16:03:11 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\IteraLabs
[2012.08.01 05:26:42 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\JaiboGames
[2016.03.09 17:47:27 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Jewel Match 4_b
[2014.08.29 05:23:56 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Juniper Networks
[2013.04.14 06:36:47 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Klenoty Vychodoindicke spolecnosti
[2012.08.10 07:23:19 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\LegacyGames
[2016.09.04 07:02:19 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Legendary Mahjong
[2013.09.18 16:18:15 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Lonely Troops
[2010.08.25 10:24:31 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Macromedia
[2011.11.28 06:51:11 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\md studio
[2009.07.14 11:20:06 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Media Center Programs
[2016.09.06 15:58:51 | 000,000,000 | --SD | M] -- C:\Users\Uzivatel\AppData\Roaming\Microsoft
[2015.09.18 11:18:04 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\MoomlAgent
[2015.10.16 19:11:07 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Mozilla
[2016.05.10 14:38:14 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\MysteryTag
[2013.10.05 04:09:21 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\MythPeople
[2013.08.28 15:24:30 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Nero
[2017.02.10 05:49:52 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Nitro
[2016.05.25 04:21:29 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Nordcurrent
[2015.12.31 05:55:40 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Opera Software
[2017.08.30 18:01:06 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Panda Security
[2011.03.28 16:34:20 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\PeaceCraft2
[2014.01.06 12:58:57 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Pirrit
[2012.03.23 06:48:04 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Princess Isabella
[2016.06.09 16:39:29 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\quickclick
[2016.09.07 09:43:22 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Rovio
[2016.09.07 13:56:08 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Rovio Entertainment Ltd
[2014.02.20 17:43:55 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\saves
[2012.02.20 06:25:51 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Settlement. Colossus
[2014.02.28 17:51:29 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Seznam.cz
[2016.08.23 17:55:36 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Skype
[2016.10.08 05:30:32 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\SpinTop
[2014.01.06 16:07:41 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\systweak
[2014.01.06 12:58:56 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\T-App
[2013.03.15 06:30:05 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\tabagames
[2017.08.26 15:41:51 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\TeamViewer
[2016.05.08 05:23:22 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Teyon
[2012.02.23 18:12:00 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\thejoyoffarming
[2014.01.04 06:21:41 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\TOMI2.THE GATES OF FATE
[2012.12.28 17:23:05 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\TOMI3
[2013.10.29 16:28:58 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\TuneUp Software
[2015.02.17 11:54:52 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Unity
[2012.04.19 11:53:49 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\VendelGAMES
[2017.08.31 04:31:43 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\vlc
[2014.01.01 12:11:32 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\VOS
[2012.10.01 05:48:50 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\WeatherLord
[2013.04.14 06:36:43 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\WiiSports101in1
[2016.10.08 11:02:45 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\ZOG
< %APPDATA%\*.exe /s >
[2016.02.16 05:07:22 | 000,310,960 | ---- | M] (Adobe Systems Inc.) -- C:\Users\Uzivatel\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
[2017.04.28 16:08:51 | 000,251,848 | R--- | M] (Acresso Software Inc.) -- C:\Users\Uzivatel\AppData\Roaming\Microsoft\Installer\{1896CB18-36FE-4AA6-8F9C-F42C087941CD}\ARPPRODUCTICON.exe
[2017.04.28 16:08:51 | 000,251,848 | R--- | M] (Acresso Software Inc.) -- C:\Users\Uzivatel\AppData\Roaming\Microsoft\Installer\{1896CB18-36FE-4AA6-8F9C-F42C087941CD}\NewShortcut1_E004384A8D9148B78F6A2EE52F39EAF6.exe
[2010.08.25 08:41:11 | 000,002,998 | R--- | M] () -- C:\Users\Uzivatel\AppData\Roaming\Microsoft\Installer\{A4FEEED3-51B4-4BBA-ACB2-8820EED93C52}\ARPPRODUCTICON.exe
[2011.06.08 02:06:31 | 000,002,998 | R--- | M] () -- C:\Users\Uzivatel\AppData\Roaming\Microsoft\Installer\{AD145AD6-8697-463B-AB76-B48C21242917}\ARPPRODUCTICON.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2017.09.01 11:54:26 | 000,018,240 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2017.09.01 11:54:26 | 000,018,240 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2017.08.30 18:05:44 | 000,409,608 | ---- | M] () -- C:\Windows\system32\FNTCACHE.DAT
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"OneDrive" = "C:\Users\Uzivatel\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background -- [2017.07.25 18:08:32 | 001,536,208 | ---- | M] (Microsoft Corporation)
"RoboTask Lite" = "C:\Program Files\RoboTask Lite\RoboTaskLite.exe" -- [2013.12.05 12:30:40 | 001,915,720 | ---- | M] (Neowise)
"RESTART_STICKY_NOTES" = C:\Windows\System32\StikyNot.exe -- [2009.07.14 03:14:41 | 000,354,304 | ---- | M] (Microsoft Corporation)
< >
< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >
[2017.08.26 04:31:40 | 000,532,432 | ---- | M] (Mozilla Corporation) MD5=97E689B69A93F3729CB9F1B3C072BAA1 -- C:\Program Files\Mozilla Firefox\firefox.exe
< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2015.12.17 00:29:17 | 000,770,736 | ---- | M] (Microsoft Corporation) MD5=21CDC1BC5A23B230C2337F56867599D7 -- C:\Program Files\Internet Explorer\iexplore.exe
< %PROGRAMFILES%\Opera\opera.exe /md5 >
< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >
[2017.08.23 09:31:43 | 001,131,864 | ---- | M] (Google Inc.) MD5=3BB184B7A39FA79910FD1BA149FBB943 -- C:\Program Files\Google\Chrome\Application\chrome.exe
< >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2017.09.01 19:29:41 | 000,000,512 | ---- | M] () MD5=59A8231D49C92E62A9DA7AED92391F73 -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[2013.06.24 21:20:50 | 000,062,238 | ---- | M] () -- \Program Files\GIMP 2\share\gimp\2.0\patterns\cracked.pat
[2012.09.05 08:41:40 | 000,008,600 | ---- | M] () -- \Program Files\Hry.cz\Jewel Match 4\images\hog\fishing boat\cracker.png
[2012.09.05 18:41:40 | 000,008,600 | ---- | M] () -- \Program Files\Hry.cz\Jewel Match 4\images\hog\w1_fishing_boat_hog\cracker.png
[1995.11.24 01:19:04 | 000,027,849 | ---- | M] () -- \Users\Uzivatel\Downloads\SWCHESS\CAPTURES\CRACKLE.DSF
< *keygen* /s >
OTL logfile created on: 1.9.2017 19:27:20 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Uzivatel\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.17609)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
3,50 Gb Total Physical Memory | 1,56 Gb Available Physical Memory | 44,45% Memory free
7,00 Gb Paging File | 4,12 Gb Available in Paging File | 58,91% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 279,36 Gb Total Space | 124,62 Gb Free Space | 44,61% Space Free | Partition Type: NTFS
Drive E: | 100,00 Mb Total Space | 65,60 Mb Free Space | 65,60% Space Free | Partition Type: NTFS
Computer Name: UZIVATEL-PC | User Name: Uzivatel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2017.09.01 19:25:21 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Uzivatel\Desktop\OTL.exe
PRC - [2017.08.01 16:23:11 | 000,198,144 | ---- | M] (Lely Industries N.V.) -- C:\Program Files\Lely\T4C\Bin\T4CServices.exe
PRC - [2017.07.25 18:08:32 | 001,536,208 | ---- | M] (Microsoft Corporation) -- C:\Users\Uzivatel\AppData\Local\Microsoft\OneDrive\OneDrive.exe
PRC - [2017.05.22 18:42:09 | 001,787,904 | ---- | M] (Lely Industries N.V.) -- C:\Program Files\Lely\T4C\Bin\T4CSynchroniser.exe
PRC - [2017.05.22 18:41:40 | 000,010,752 | ---- | M] (Lely Industries N.V.) -- C:\Program Files\Lely\T4C\Bin\LelyPDF.Service.exe
PRC - [2017.05.22 18:35:50 | 000,035,840 | ---- | M] (Lely Industries N.V.) -- C:\Program Files\Lely\T4C\Bin\T4CCalmSynchroniser.exe
PRC - [2017.05.22 18:35:43 | 000,317,440 | ---- | M] (Lely Industries N.V.) -- C:\Program Files\Lely\T4C\Bin\T4CServiceManager.exe
PRC - [2017.05.22 18:35:03 | 000,099,840 | ---- | M] () -- C:\Program Files\Lely\T4C\Bin\NedapCowLocator.exe
PRC - [2017.05.22 18:33:18 | 000,031,232 | ---- | M] (Lely Industries N.V.) -- C:\Program Files\Lely\T4C\Bin\BackupService.exe
PRC - [2017.05.22 18:32:10 | 000,135,680 | ---- | M] () -- C:\Program Files\Lely\T4C\T4CMobileApi\T4C.Api.Service.exe
PRC - [2017.04.04 06:34:00 | 000,145,920 | ---- | M] () -- C:\Program Files\MoomlAgent\MoomlAgent.exe
PRC - [2017.02.23 14:16:59 | 000,023,040 | ---- | M] () -- C:\Program Files\Lely\T4C\AFSSynch\AFSSynchronizer.exe
PRC - [2016.11.14 21:30:32 | 000,280,864 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\NisSrv.exe
PRC - [2016.11.14 21:30:32 | 000,103,696 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\MsMpEng.exe
PRC - [2016.11.14 21:01:22 | 001,002,984 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2016.08.29 16:55:07 | 002,972,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2016.07.05 14:35:44 | 000,210,432 | ---- | M] (Geek Software GmbH) -- C:\Program Files\PDF24\pdf24.exe
PRC - [2015.09.11 17:45:12 | 015,863,568 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\TeamViewer.exe
PRC - [2015.09.11 17:45:12 | 005,697,296 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\TeamViewer_Service.exe
PRC - [2015.09.11 17:22:54 | 000,230,672 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\tv_w32.exe
PRC - [2014.11.21 04:12:44 | 000,626,688 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
PRC - [2014.11.21 04:12:38 | 000,212,992 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
PRC - [2014.11.05 15:09:23 | 000,207,360 | ---- | M] (Lely) -- C:\Program Files\Lely\T4C.Mobile\NetworkConnector\NetworkConnector.exe
PRC - [2013.12.18 20:42:32 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013.12.05 12:30:40 | 001,915,720 | ---- | M] (Neowise) -- C:\Program Files\RoboTask Lite\RoboTaskLite.exe
PRC - [2013.07.26 07:48:28 | 000,196,624 | ---- | M] (Nitro PDF Software) -- C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe
PRC - [2013.04.15 16:00:58 | 000,692,328 | ---- | M] (Juniper Networks) -- C:\Program Files\Juniper Networks\Common Files\dsNcService.exe
PRC - [2012.11.23 04:48:41 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2011.02.23 18:09:20 | 001,128,448 | ---- | M] (VIT-PCS GmbH) -- C:\Program Files\FoersterTechnik\KM2\kalbmanager_srv.exe
PRC - [2010.08.11 17:49:36 | 000,094,208 | ---- | M] (Lely) -- C:\Program Files\Lely\T4C\Bin\T4CNService.exe
PRC - [2010.02.15 19:58:46 | 000,090,112 | ---- | M] (LELY) -- C:\Program Files\Lely\T4C\Bin\LFWLogService.exe
PRC - [2009.08.04 17:29:54 | 000,219,360 | ---- | M] (DeviceVM, Inc.) -- C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
PRC - [2009.08.04 17:29:52 | 000,346,320 | ---- | M] (DeviceVM, Inc.) -- C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe
PRC - [2009.07.30 17:51:02 | 000,068,136 | ---- | M] () -- C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe
PRC - [2009.07.14 03:14:41 | 000,354,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\StikyNot.exe
PRC - [2009.07.14 03:14:21 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inetsrv\inetinfo.exe
PRC - [2009.06.04 19:03:32 | 000,186,904 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2009.06.04 19:03:06 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
========== Modules (No Company Name) ==========
MOD - [2017.06.20 04:49:35 | 011,935,232 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\4fa6f3e9feeb99941005249d6ca0e1a0\System.Web.ni.dll
MOD - [2017.06.20 04:49:28 | 000,774,144 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\dc54926c6f6670ac15aaef4b51bce371\System.Runtime.Remoting.ni.dll
MOD - [2017.06.20 04:49:03 | 012,437,504 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\5e483d1c8e1b4fb94c286b244121fd1a\System.Windows.Forms.ni.dll
MOD - [2017.06.20 04:48:56 | 001,593,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\5daf2d5bc9cfe64bff8b6d07eb1aab27\System.Drawing.ni.dll
MOD - [2017.06.20 04:48:52 | 005,467,648 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\5c2dbe5ae878a787d78751b24a03a4d5\System.Xml.ni.dll
MOD - [2017.06.20 04:48:48 | 000,978,432 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\18a2276fe5da130b691454f0517e8df6\System.Configuration.ni.dll
MOD - [2017.06.20 04:48:34 | 008,003,072 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\7af96fc80fba1e1f7d17a686f5e9bdd8\System.ni.dll
MOD - [2017.06.20 04:48:14 | 011,500,544 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\9f895c66454577eff9c77442d0c84f71\mscorlib.ni.dll
MOD - [2017.06.20 04:42:27 | 000,522,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Net.Http\1a1cc225b34690070dd1c2998069255e\System.Net.Http.ni.dll
MOD - [2017.06.20 04:42:23 | 019,939,328 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\2db768fdc0ca1f00d5f3488c963ad190\System.ServiceModel.ni.dll
MOD - [2017.06.20 04:42:08 | 000,395,776 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Linq\d74a2ce554547ea112ddc70e4935db81\System.Xml.Linq.ni.dll
MOD - [2017.06.20 04:31:43 | 001,904,640 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Web.Services\85bab0750b3715ed0d6792969a06b13f\System.Web.Services.ni.dll
MOD - [2017.06.20 04:31:42 | 013,918,720 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Web\fedcb80b0d828ade79342bfb23ee370a\System.Web.ni.dll
MOD - [2017.06.20 04:31:40 | 001,172,992 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Data86569bbf#\e5340ad6b73223dd05f7a4408de618fc\System.Data.OracleClient.ni.dll
MOD - [2017.06.20 04:31:40 | 000,252,928 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Comp46f2b404#\3ccaf2f81c392aa94b758d31540e4409\System.ComponentModel.DataAnnotations.ni.dll
MOD - [2017.06.20 04:31:36 | 000,769,536 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Ente96d83b35#\e40a165b5544a461ccb50ba34b6673ac\System.EnterpriseServices.ni.dll
MOD - [2017.06.20 04:31:36 | 000,251,904 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runt19c51595#\22a6be8edf37d9b6ec0e5803d16dd6a0\System.Runtime.Caching.ni.dll
MOD - [2017.06.20 04:31:36 | 000,243,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Ente96d83b35#\e40a165b5544a461ccb50ba34b6673ac\System.EnterpriseServices.Wrapper.dll
MOD - [2017.06.20 04:31:35 | 000,719,360 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Transactions\380681c1f99aca2a3a01ef5d2347ace4\System.Transactions.ni.dll
MOD - [2017.06.20 04:31:34 | 000,809,472 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runt73a1fc9d#\7fa7dc8ca35b62b81a1f33bcae7d2ee8\System.Runtime.Remoting.ni.dll
MOD - [2017.06.20 04:31:30 | 007,966,208 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Data\537b63e1fe3e0eca6d83964a4d01281a\System.Data.ni.dll
MOD - [2017.06.20 04:31:28 | 013,564,416 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\30da8fa10e06e0f8e06a23dd42775744\System.Windows.Forms.ni.dll
MOD - [2017.06.20 04:31:20 | 002,841,088 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\9c544e977c420f7a94f0892097b8a6a7\System.Runtime.Serialization.ni.dll
MOD - [2017.06.20 04:31:20 | 001,645,568 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\161bf26ea58a00810515847a2c551741\System.Drawing.ni.dll
MOD - [2017.06.20 04:31:19 | 000,802,304 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Servd1dec626#\8668b61d526100cf5acb802c57f29f9c\System.ServiceModel.Internals.ni.dll
MOD - [2017.06.20 04:31:19 | 000,118,272 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\67849d7735cb99c03d3a8add69b211b4\SMDiagnostics.ni.dll
MOD - [2017.06.20 04:31:08 | 000,993,792 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\46a1c421b74e2db0acf8f48f96fcc460\System.Configuration.ni.dll
MOD - [2017.06.20 04:31:02 | 010,906,624 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Design\9b7f8dcb646ac3797424056bd6a0e0fb\System.Design.ni.dll
MOD - [2017.06.20 04:30:57 | 007,576,064 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\3d3f60c73523fe26dafd69911d7a0e02\System.Xml.ni.dll
MOD - [2017.06.20 04:30:54 | 007,684,096 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\9b3323c270e11b1c7785ed988e60ff92\System.Core.ni.dll
MOD - [2017.06.20 04:30:48 | 010,336,768 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\7f93837e87869a6f9b9c7d21e544bd78\System.ni.dll
MOD - [2017.06.20 04:30:43 | 000,273,920 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Numerics\ded4c301a3f6a9c519ffdea2d351fb35\System.Numerics.ni.dll
MOD - [2017.06.20 04:30:41 | 020,491,776 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\c63857e47a917e45ff227d52324d08a1\mscorlib.ni.dll
MOD - [2017.04.04 06:34:00 | 000,145,920 | ---- | M] () -- C:\Program Files\MoomlAgent\MoomlAgent.exe
MOD - [2010.11.13 04:37:08 | 000,425,984 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Windows.Forms.resources\2.0.0.0_cs_b77a5c561934e089\System.Windows.Forms.resources.dll
MOD - [2010.11.13 03:54:19 | 000,303,104 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_cs_b77a5c561934e089\mscorlib.resources.dll
MOD - [2010.08.25 07:33:04 | 001,695,744 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager2.Graphics.Wizard\2.0.3561.39197__90ba9c70f846762e\CLI.Aspect.DisplaysManager2.Graphics.Wizard.dll
MOD - [2010.08.25 07:33:04 | 000,364,544 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.3561.39032__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll
MOD - [2010.08.25 07:33:04 | 000,204,800 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Wizard\2.0.3561.39058__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Wizard.dll
MOD - [2010.08.25 07:33:04 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard\2.0.3561.39051__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.dll
MOD - [2010.08.25 07:33:04 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Runtime\2.0.3561.39043__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll
MOD - [2010.08.25 07:33:04 | 000,011,776 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.HydraVision.Runtime\2.0.3561.39171__90ba9c70f846762e\CLI.Caste.HydraVision.Runtime.dll
MOD - [2010.08.25 07:33:04 | 000,008,704 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.HydraVision.Shared\2.0.3561.39171__90ba9c70f846762e\CLI.Caste.HydraVision.Shared.dll
MOD - [2010.08.25 07:33:04 | 000,007,680 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.HydraVision.Wizard\2.0.3561.39177__90ba9c70f846762e\CLI.Caste.HydraVision.Wizard.dll
MOD - [2010.08.25 07:33:04 | 000,007,680 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.HydraVision.Dashboard\2.0.3561.39171__90ba9c70f846762e\CLI.Caste.HydraVision.Dashboard.dll
MOD - [2010.08.25 07:33:03 | 000,491,520 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Wizard\2.0.3561.39154__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Wizard.dll
MOD - [2010.08.25 07:33:03 | 000,077,824 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Runtime\2.0.3561.39129__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Runtime.dll
MOD - [2010.08.25 07:33:03 | 000,073,728 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard\2.0.3561.39042__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.dll
MOD - [2010.08.25 07:33:03 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Runtime\2.0.3561.39101__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Runtime.dll
MOD - [2010.08.25 07:33:03 | 000,036,864 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Runtime\2.0.3561.39088__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll
MOD - [2010.08.25 07:33:02 | 000,356,352 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Dashboard\2.0.3561.39109__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll
MOD - [2010.08.25 07:33:02 | 000,094,208 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Wizard\2.0.3561.39110__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Wizard.dll
MOD - [2010.08.25 07:33:02 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Runtime\2.0.3561.39108__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Runtime.dll
MOD - [2010.08.25 07:33:02 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Dashboard\2.0.3561.39156__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Dashboard.dll
MOD - [2010.08.25 07:33:01 | 001,122,304 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager2.Graphics.Dashboard\2.0.3561.39193__90ba9c70f846762e\CLI.Aspect.DisplaysManager2.Graphics.Dashboard.dll
MOD - [2010.08.25 07:33:01 | 000,823,296 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Dashboard\2.0.3561.39091__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Dashboard.dll
MOD - [2010.08.25 07:33:01 | 000,643,072 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.OverDrive5.Graphics.Dashboard\2.0.3561.39169__90ba9c70f846762e\CLI.Aspect.OverDrive5.Graphics.Dashboard.dll
MOD - [2010.08.25 07:33:01 | 000,573,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Dashboard\2.0.3561.39060__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll
MOD - [2010.08.25 07:33:01 | 000,409,600 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Wizard\2.0.3561.39122__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Wizard.dll
MOD - [2010.08.25 07:33:01 | 000,196,608 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Dashboard\2.0.3561.39058__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll
MOD - [2010.08.25 07:33:01 | 000,094,208 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Runtime\2.0.3561.39090__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Runtime.dll
MOD - [2010.08.25 07:33:01 | 000,094,208 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Dashboard\2.0.3561.39098__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll
MOD - [2010.08.25 07:33:01 | 000,077,824 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.OverDrive5.Graphics.Runtime\2.0.3561.39168__90ba9c70f846762e\CLI.Aspect.OverDrive5.Graphics.Runtime.dll
MOD - [2010.08.25 07:33:01 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Runtime\2.0.3561.39097__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll
MOD - [2010.08.25 07:33:00 | 000,393,216 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Dashboard\2.0.3561.39090__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll
MOD - [2010.08.25 07:33:00 | 000,360,448 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Dashboard\2.0.3561.39084__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll
MOD - [2010.08.25 07:33:00 | 000,270,336 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
MOD - [2010.08.25 07:33:00 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Runtime\2.0.3561.39089__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll
MOD - [2010.08.25 07:33:00 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Runtime\2.0.3561.39064__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll
MOD - [2010.08.25 07:33:00 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Runtime\2.0.3561.39090__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll
MOD - [2010.08.25 07:33:00 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Runtime\2.0.3561.39099__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll
MOD - [2010.08.25 07:33:00 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.3552.27105__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll
MOD - [2010.08.25 07:33:00 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared\2.0.3552.27103__90ba9c70f846762e\AEM.Actions.CCAA.Shared.dll
MOD - [2010.08.25 07:33:00 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.WinMessages.Shared\2.0.3552.27220__90ba9c70f846762e\AEM.Plugin.WinMessages.Shared.dll
MOD - [2010.08.25 07:33:00 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.REG.Shared\2.0.3552.27317__90ba9c70f846762e\AEM.Plugin.REG.Shared.dll
MOD - [2010.08.25 07:33:00 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2.0.3552.27306__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll
MOD - [2010.08.25 07:33:00 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.EEU.Shared\2.0.3552.27206__90ba9c70f846762e\AEM.Plugin.EEU.Shared.dll
MOD - [2010.08.25 07:32:59 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation\2.0.3552.26984__90ba9c70f846762e\LOG.Foundation.dll
MOD - [2010.08.25 07:32:59 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.3552.26991__90ba9c70f846762e\NEWAEM.Foundation.dll
MOD - [2010.08.25 07:32:59 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0703\2.0.2651.18802__90ba9c70f846762e\DEM.Graphics.I0703.dll
MOD - [2010.08.25 07:32:59 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\MOM.Foundation\2.0.3552.27197__90ba9c70f846762e\MOM.Foundation.dll
MOD - [2010.08.25 07:32:59 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0706\2.0.2743.23304__90ba9c70f846762e\DEM.Graphics.I0706.dll
MOD - [2010.08.25 07:32:59 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.3552.27300__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll
MOD - [2010.08.25 07:32:59 | 000,007,168 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\atixclib\1.0.0.0__90ba9c70f846762e\atixclib.dll
MOD - [2010.08.25 07:32:58 | 000,139,264 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.3552.27161__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll
MOD - [2010.08.25 07:32:58 | 000,098,304 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation\2.0.3552.27021__90ba9c70f846762e\CLI.Foundation.dll
MOD - [2010.08.25 07:32:58 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.OverDrive5.Graphics.Shared\2.0.3552.27311__90ba9c70f846762e\CLI.Aspect.OverDrive5.Graphics.Shared.dll
MOD - [2010.08.25 07:32:58 | 000,057,344 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Shared\2.0.3552.27257__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Shared.dll
MOD - [2010.08.25 07:32:58 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0.2573.17685__90ba9c70f846762e\DEM.Graphics.I0601.dll
MOD - [2010.08.25 07:32:58 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Shared\2.0.3552.27288__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Shared.dll
MOD - [2010.08.25 07:32:58 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.3552.27381__90ba9c70f846762e\CLI.Foundation.XManifest.dll
MOD - [2010.08.25 07:32:58 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared\2.0.3552.27119__90ba9c70f846762e\CLI.Component.Dashboard.Shared.dll
MOD - [2010.08.25 07:32:58 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.3552.27139__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll
MOD - [2010.08.25 07:32:58 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.3552.27059__90ba9c70f846762e\CLI.Component.Client.Shared.dll
MOD - [2010.08.25 07:32:58 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics\2.0.3552.27237__90ba9c70f846762e\DEM.Graphics.dll
MOD - [2010.08.25 07:32:58 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Foundation\2.0.2573.17684__90ba9c70f846762e\DEM.Foundation.dll
MOD - [2010.08.25 07:32:58 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.3552.27169__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll
MOD - [2010.08.25 07:32:58 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard.Shared\2.0.3552.27242__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.Shared.dll
MOD - [2010.08.25 07:32:58 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard.Shared\2.0.3552.27179__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.Shared.dll
MOD - [2010.08.25 07:32:57 | 000,651,264 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ResourceManagement.Foundation.Implementation\2.0.3561.39190__90ba9c70f846762e\ResourceManagement.Foundation.Implementation.dll
MOD - [2010.08.25 07:32:57 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Shared\2.0.3552.27258__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Shared.dll
MOD - [2010.08.25 07:32:57 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Shared\2.0.3552.27249__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Shared.dll
MOD - [2010.08.25 07:32:57 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Shared\2.0.3552.27248__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Shared.dll
MOD - [2010.08.25 07:32:57 | 000,049,152 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Shared\2.0.3552.27248__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Shared.dll
MOD - [2010.08.25 07:32:57 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.3561.39162__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll
MOD - [2010.08.25 07:32:57 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Shared\2.0.3552.27255__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Shared.dll
MOD - [2010.08.25 07:32:57 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Shared\2.0.3552.27219__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Shared.dll
MOD - [2010.08.25 07:32:57 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Shared\2.0.3552.27244__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll
MOD - [2010.08.25 07:32:57 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Shared\2.0.3552.27239__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Shared.dll
MOD - [2010.08.25 07:32:57 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CustomFormats.Graphics.Shared\2.0.3552.27198__90ba9c70f846762e\CLI.Aspect.CustomFormats.Graphics.Shared.dll
MOD - [2010.08.25 07:32:57 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Shared\2.0.3552.27251__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll
MOD - [2010.08.25 07:32:57 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Shared\2.0.3552.27208__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll
MOD - [2010.08.25 07:32:57 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\APM.Foundation\2.0.3552.27204__90ba9c70f846762e\APM.Foundation.dll
MOD - [2010.08.25 07:32:57 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Server.Shared\2.0.3552.27107__90ba9c70f846762e\AEM.Server.Shared.dll
MOD - [2010.08.25 07:32:57 | 000,007,168 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Extension.EEU\2.0.3561.39028__90ba9c70f846762e\CLI.Component.Runtime.Extension.EEU.dll
MOD - [2010.08.25 07:32:56 | 000,561,152 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Systemtray\2.0.3561.39141__90ba9c70f846762e\CLI.Component.Systemtray.dll
MOD - [2010.08.25 07:32:56 | 000,405,504 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.3561.39050__90ba9c70f846762e\CLI.Component.Wizard.dll
MOD - [2010.08.25 07:32:56 | 000,106,496 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\MOM.Implementation\2.0.3561.39147__90ba9c70f846762e\MOM.Implementation.dll
MOD - [2010.08.25 07:32:56 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3561.39145__90ba9c70f846762e\LOG.Foundation.Implementation.dll
MOD - [2010.08.25 07:32:56 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.3552.27044__90ba9c70f846762e\CLI.Foundation.Private.dll
MOD - [2010.08.25 07:32:56 | 000,036,864 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.3552.27085__90ba9c70f846762e\LOG.Foundation.Private.dll
MOD - [2010.08.25 07:32:56 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.3552.27184__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll
MOD - [2010.08.25 07:32:56 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ResourceManagement.Foundation.Private\2.0.3552.27098__90ba9c70f846762e\ResourceManagement.Foundation.Private.dll
MOD - [2010.08.25 07:32:56 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.3552.27177__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll
MOD - [2010.08.25 07:32:55 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.3561.39029__90ba9c70f846762e\CLI.Component.Runtime.dll
MOD - [2010.08.25 07:32:55 | 000,057,344 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.SkinFactory\2.0.3561.39031__90ba9c70f846762e\CLI.Component.SkinFactory.dll
MOD - [2010.08.25 07:32:55 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.3552.27176__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll
MOD - [2010.08.25 07:32:55 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared.Private\2.0.3552.27195__90ba9c70f846762e\CLI.Component.Dashboard.Shared.Private.dll
MOD - [2010.08.25 07:32:54 | 001,220,608 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard\2.0.3561.39038__90ba9c70f846762e\CLI.Component.Dashboard.dll
MOD - [2010.08.25 07:32:54 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\APM.Server\2.0.3561.39027__90ba9c70f846762e\APM.Server.dll
MOD - [2010.08.25 07:32:54 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.3552.27135__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll
MOD - [2010.08.25 07:32:54 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll
MOD - [2010.08.25 07:32:54 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime.Shared.Private\2.0.3552.27265__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.Shared.Private.dll
MOD - [2010.08.25 07:32:54 | 000,019,456 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CCC.Implementation\2.0.3561.39147__90ba9c70f846762e\CCC.Implementation.dll
MOD - [2010.08.25 07:32:53 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Server\2.0.3561.39028__90ba9c70f846762e\AEM.Server.dll
MOD - [2009.10.01 16:45:50 | 000,016,384 | R--- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll
MOD - [2009.07.30 18:15:32 | 000,503,202 | ---- | M] () -- C:\Program Files\DeviceVM\Browser Configuration Utility\sqlite3.dll
========== Services (SafeList) ==========
SRV - [2017.08.26 04:31:40 | 000,175,568 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2017.08.09 05:05:11 | 000,272,384 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2017.08.01 16:23:11 | 000,198,144 | ---- | M] (Lely Industries N.V.) [Auto | Running] -- C:\Program Files\Lely\T4C\Bin\T4CServices.exe -- (T4CGenerator)
SRV - [2017.05.22 18:42:09 | 001,787,904 | ---- | M] (Lely Industries N.V.) [Auto | Running] -- C:\Program Files\Lely\T4C\Bin\T4CSynchroniser.exe -- (T4CDevSynch)
SRV - [2017.05.22 18:41:40 | 000,010,752 | ---- | M] (Lely Industries N.V.) [Auto | Running] -- C:\Program Files\Lely\T4C\Bin\LelyPDF.Service.exe -- (T4CDLM)
SRV - [2017.05.22 18:35:50 | 000,035,840 | ---- | M] (Lely Industries N.V.) [Auto | Running] -- C:\Program Files\Lely\T4C\Bin\T4CCalmSynchroniser.exe -- (T4CCalmSynch)
SRV - [2017.05.22 18:35:03 | 000,099,840 | ---- | M] () [Auto | Running] -- C:\Program Files\Lely\T4C\Bin\NedapCowLocator.exe -- (NedapLDService)
SRV - [2017.05.22 18:33:18 | 000,031,232 | ---- | M] (Lely Industries N.V.) [Auto | Running] -- C:\Program Files\Lely\T4C\Bin\BackupService.exe -- (T4CBackup)
SRV - [2017.05.22 18:32:10 | 000,135,680 | ---- | M] () [Auto | Running] -- C:\Program Files\Lely\T4C\T4CMobileApi\T4C.Api.Service.exe -- (T4CApiService)
SRV - [2017.02.23 14:16:59 | 000,023,040 | ---- | M] () [Auto | Running] -- C:\Program Files\Lely\T4C\AFSSynch\AFSSynchronizer.exe -- (AFSSynchronizer)
SRV - [2016.11.14 21:30:32 | 000,280,864 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV - [2016.11.14 21:30:32 | 000,103,696 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2016.08.21 15:05:24 | 000,935,424 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\diagtrack.dll -- (DiagTrack)
SRV - [2015.09.11 17:45:12 | 005,697,296 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files\TeamViewer\TeamViewer_Service.exe -- (TeamViewer)
SRV - [2014.11.21 04:12:38 | 000,212,992 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2014.09.01 11:18:46 | 000,007,168 | ---- | M] (Microsoft) [Disabled | Stopped] -- C:\Program Files\SCR\LDService\SCRLDService.exe -- (SCRLDService)
SRV - [2013.12.18 20:42:32 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013.07.26 07:48:28 | 000,196,624 | ---- | M] (Nitro PDF Software) [Auto | Running] -- C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe -- (NitroReaderDriverReadSpool3)
SRV - [2013.05.27 06:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2013.04.15 16:00:58 | 000,692,328 | ---- | M] (Juniper Networks) [Auto | Running] -- C:\Program Files\Juniper Networks\Common Files\dsNcService.exe -- (dsNcService)
SRV - [2012.06.01 06:36:46 | 000,310,272 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\inetsrv\ftpsvc.dll -- (ftpsvc)
SRV - [2010.11.20 14:19:20 | 000,397,824 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\inetsrv\iisw3adm.dll -- (WAS)
SRV - [2010.11.20 14:19:20 | 000,397,824 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\inetsrv\iisw3adm.dll -- (W3SVC)
SRV - [2010.11.20 14:18:03 | 000,061,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\inetsrv\apphostsvc.dll -- (AppHostSvc)
SRV - [2010.08.26 09:06:21 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2010.08.11 17:49:36 | 000,094,208 | ---- | M] (Lely) [Auto | Running] -- C:\Program Files\Lely\T4C\Bin\T4CNService.exe -- (LDNService)
SRV - [2010.02.15 19:58:46 | 000,090,112 | ---- | M] (LELY) [Auto | Running] -- C:\Program Files\Lely\T4C\Bin\LFWLogService.exe -- (LFWLogService)
SRV - [2009.08.04 17:29:54 | 000,219,360 | ---- | M] (DeviceVM, Inc.) [Auto | Running] -- C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe -- (BCUService)
SRV - [2009.07.30 17:51:02 | 000,068,136 | ---- | M] () [Auto | Running] -- C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe -- (GEST Service)
SRV - [2009.07.14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009.07.14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009.07.14 03:14:48 | 000,009,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\inetsrv\WMSvc.exe -- (WMSVC)
SRV - [2009.07.14 03:14:21 | 000,013,824 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\inetsrv\inetinfo.exe -- (IISADMIN)
SRV - [2009.06.04 19:03:06 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\SWDUMon.sys -- (SWDUMon)
DRV - File not found [Kernel | System | Stopped] -- c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{F304C7CA-C10A-4A83-9C32-E3BAF39ED099}\MpKsl96de6ffb.sys -- (MpKsl96de6ffb)
DRV - [2017.09.01 11:45:48 | 000,017,488 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\gdrv.sys -- (gdrv)
DRV - [2017.08.28 04:10:10 | 000,135,760 | ---- | M] (ESET) [Kernel | On_Demand | Stopped] -- C:\Users\Uzivatel\AppData\Local\Temp\ehdrv.sys -- (eapihdrv)
DRV - [2017.07.04 10:45:50 | 000,112,000 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\wfcre.sys -- (wfcre)
DRV - [2016.08.25 10:46:12 | 000,105,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2016.03.01 05:55:32 | 000,087,568 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AtihdW73.sys -- (AtiHDAudioService)
DRV - [2015.03.30 00:54:16 | 000,250,152 | ---- | M] (Microsoft Corporation) [File_System | Disabled | Stopped] -- C:\Windows\System32\drivers\RsFx0153.sys -- (RsFx0153)
DRV - [2014.11.21 04:38:32 | 016,955,392 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2014.11.21 04:38:32 | 016,955,392 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (amdkmdag)
DRV - [2014.11.21 04:08:48 | 000,472,576 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmpag.sys -- (amdkmdap)
DRV - [2014.06.13 10:53:53 | 000,320,120 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sptd.sys -- (sptd)
DRV - [2013.10.02 02:42:31 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2013.04.15 15:38:30 | 000,026,624 | ---- | M] (Juniper Networks) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\dsNcAdpt.sys -- (dsNcAdpt)
DRV - [2012.08.23 16:44:32 | 000,014,848 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2010.11.20 14:30:15 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010.11.20 14:30:15 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010.11.20 14:30:15 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010.11.20 11:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010.11.20 11:14:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010.11.20 11:14:41 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2009.09.30 16:33:56 | 000,104,976 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV - [2009.07.14 00:02:52 | 000,190,464 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\e1q6032.sys -- (e1qexpress)
DRV - [2009.02.13 11:02:52 | 000,011,520 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wdcsam.sys -- (WDC_SAM)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-893007568-957827634-3976518877-1000\SOFTWARE\Microsoft\Internet Explorer\Main,IE11UpgradePageShownTime = 05 0E 26 38 94 21 D3 01 [binary data]
IE - HKU\S-1-5-21-893007568-957827634-3976518877-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKU\S-1-5-21-893007568-957827634-3976518877-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-893007568-957827634-3976518877-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE10SR
IE - HKU\S-1-5-21-893007568-957827634-3976518877-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.countryCode: "CZ"
FF - prefs.js..browser.search.defaultengine: "Google"
FF - prefs.js..browser.search.defaultthis.engineName: "Google"
FF - prefs.js..browser.search.defaulturl: "http://www.google.com/search?ie=UTF-8&oe=utf-8&q="
FF - prefs.js..browser.search.isUS: false
FF - prefs.js..browser.search.order.1: "Google"
FF - prefs.js..browser.search.region: "CZ"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..keyword.URL: "http://www.google.com/search?ie=UTF-8&oe=utf-8&q="
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_26_0_0_151.dll ()
FF - HKLM\Software\MozillaPlugins\@alawar.com/npapi: C:\Windows\npapi.dll (Alawar)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.31.2: C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.31.2: C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nitropdf.com/NitroPDF: C:\Program Files\Nitro\Reader 3\npnitromozilla.dll (Nitro PDF)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.1: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\www.exent.com/GameTreatWidget: File not found
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Uzivatel\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\www.exent.com/GameTreatWidget: C:\Program Files\Free Ride Games\npGameTreatWidget.dll File not found
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 55.0.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 55.0.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
[2012.09.02 11:31:12 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Uzivatel\AppData\Roaming\Mozilla\Extensions
[2017.05.26 07:12:44 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\ribyj95t.default\browser-extension-data
[2017.05.26 07:12:44 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\ribyj95t.default\browser-extension-data\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2017.08.30 18:02:50 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\ribyj95t.default\extensions
[2017.08.30 14:36:49 | 000,000,000 | ---D | M] (Seznam lištička) -- C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\ribyj95t.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[2017.05.09 04:54:22 | 000,788,307 | ---- | M] () (No name found) -- C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\ribyj95t.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi
[2017.06.08 06:36:21 | 001,059,016 | ---- | M] () (No name found) -- C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\ribyj95t.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2017.08.26 07:19:21 | 000,329,275 | ---- | M] () (No name found) -- C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\ribyj95t.default\features\{36f754ad-f8c6-4995-b9f0-bf5d1c1d927e}\screenshots@mozilla.org.xpi
[2017.08.26 04:31:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
========== Chrome ==========
CHR - Extension: No name found = C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\
CHR - Extension: No name found = C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\
CHR - Extension: No name found = C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\
CHR - Extension: No name found = C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0\
CHR - Extension: No name found = C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_0\
CHR - Extension: No name found = C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.3_0\
CHR - Extension: No name found = C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\
CHR - Extension: No name found = C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6017.605.1.4_0\
O1 HOSTS File: ([2009.06.10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (no name) - {d40c654d-7c51-4eb3-95b2-1e23905c2a2d} - No CLSID value found.
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-893007568-957827634-3976518877-1000\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\S-1-5-21-893007568-957827634-3976518877-1000\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [BCU] C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe (DeviceVM, Inc.)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [PDFPrint] C:\Program Files\PDF24\pdf24.exe (Geek Software GmbH)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKU\S-1-5-21-893007568-957827634-3976518877-1000..\Run: [OneDrive] C:\Users\Uzivatel\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-893007568-957827634-3976518877-1000..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-893007568-957827634-3976518877-1000..\Run: [RoboTask Lite] C:\Program Files\RoboTask Lite\RoboTaskLite.exe (Neowise)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - Startup: C:\Users\Uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MoomlAgent.lnk = C:\Program Files\MoomlAgent\MoomlAgent.exe ()
O4 - Startup: C:\Users\Uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\NetworkConnector.lnk = C:\Program Files\Lely\T4C.Mobile\NetworkConnector\NetworkConnector.exe (Lely)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 28
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 1
O7 - HKU\S-1-5-21-893007568-957827634-3976518877-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-893007568-957827634-3976518877-1000\..Trusted Domains: localhost ([]http in Internet)
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 82.163.143.176 82.163.142.178
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2F0D9425-7021-467D-AF20-8293CA1AE176}: NameServer = 82.163.143.176 82.163.142.178
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8C827E41-1970-4E79-B480-8EAA63B58104}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8C827E41-1970-4E79-B480-8EAA63B58104}: NameServer = 82.163.143.176 82.163.142.178
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2017.09.01 19:25:13 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Uzivatel\Desktop\OTL.exe
[2017.09.01 15:17:16 | 001,792,512 | ---- | C] (Farbar) -- C:\Users\Uzivatel\Desktop\FRST.exe
[2017.09.01 11:46:27 | 000,000,000 | -H-D | C] -- C:\OneDriveTemp
[2017.08.30 16:25:55 | 000,000,000 | ---D | C] -- C:\ProgramData\panda_url_filtering
[2017.08.30 16:25:23 | 000,000,000 | ---D | C] -- C:\Users\Uzivatel\AppData\Roaming\Panda Security
[2017.08.30 16:23:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Panda Security
[2017.08.30 09:49:24 | 000,000,000 | ---D | C] -- C:\Users\Uzivatel\AppData\Local\AdAwareDesktop
[2017.08.28 15:03:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab Setup Files
[2017.08.27 15:40:54 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\AV
[2017.08.26 10:03:30 | 000,000,000 | ---D | C] -- C:\Users\Uzivatel\AppData\Local\CEF
[2017.08.26 10:02:30 | 000,921,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\ucrtbase.dll
[2017.08.24 18:55:16 | 000,000,000 | ---D | C] -- C:\ProgramData\e792d596-50c3-0
[2017.08.24 18:55:16 | 000,000,000 | ---D | C] -- C:\ProgramData\e792d596-31b5-1
[2017.08.24 18:55:06 | 000,000,000 | ---D | C] -- C:\ProgramData\82ff95ce
[2017.08.24 18:55:03 | 000,000,000 | ---D | C] -- C:\ProgramData\{D2DFF142-6574-46E9-469D-D015B619F058}
[2017.08.24 18:54:59 | 000,000,000 | ---D | C] -- C:\ProgramData\{67a045f1-512c-1}
[2017.08.24 18:54:59 | 000,000,000 | ---D | C] -- C:\ProgramData\{48d13e98-412c-0}
[2017.08.09 08:52:37 | 001,311,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjet40.dll
[2017.08.09 08:52:37 | 000,616,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrepl40.dll
[2017.08.09 08:52:37 | 000,475,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxbde40.dll
[2017.08.09 08:52:37 | 000,375,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mspbde40.dll
[2017.08.09 08:52:37 | 000,343,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrd3x40.dll
[2017.08.09 08:52:37 | 000,339,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msexcl40.dll
[2017.08.09 08:52:37 | 000,310,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrd2x40.dll
[2017.08.09 08:52:37 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjtes40.dll
[2017.08.09 08:52:37 | 000,240,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msltus40.dll
[2017.08.09 08:52:36 | 004,001,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2017.08.09 08:52:36 | 003,945,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2017.08.09 08:52:36 | 002,402,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2017.08.09 08:52:36 | 001,549,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tquery.dll
[2017.08.09 08:52:36 | 001,400,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssrch.dll
[2017.08.09 08:52:36 | 000,866,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mswdat10.dll
[2017.08.09 08:52:36 | 000,641,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mswstr10.dll
[2017.08.09 08:52:36 | 000,382,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wer.dll
[2017.08.09 08:52:36 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjint40.dll
[2017.08.09 08:52:36 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2017.08.09 08:52:36 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjter40.dll
[2017.08.09 08:52:36 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wermgr.exe
[2017.08.09 08:52:36 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\werdiagcontroller.dll
[2017.08.09 08:52:35 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssvp.dll
[2017.08.09 08:52:35 | 000,400,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srcore.dll
[2017.08.09 08:52:35 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssph.dll
[2017.08.09 08:52:35 | 000,262,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rstrui.exe
[2017.08.09 08:52:35 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
[2017.08.09 08:52:35 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssphtb.dll
[2017.08.09 08:52:35 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msaudite.dll
[2017.08.09 08:52:35 | 000,141,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rpchttp.dll
[2017.08.09 08:52:35 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssitlb.dll
[2017.08.09 08:52:35 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\appidpolicyconverter.exe
[2017.08.09 08:52:35 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bcrypt.dll
[2017.08.09 08:52:35 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscntrs.dll
[2017.08.09 08:52:35 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\appidapi.dll
[2017.08.09 08:52:35 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\setbcdlocale.dll
[2017.08.09 08:52:35 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\auditpol.exe
[2017.08.09 08:52:35 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll
[2017.08.09 08:52:35 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssprxy.dll
[2017.08.09 08:52:35 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\appidcertstorecheck.exe
[2017.08.09 08:52:35 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sspisrv.dll
[2017.08.09 08:52:35 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msshooks.dll
[2017.08.09 08:52:35 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\apisetschema.dll
[2017.08.09 08:52:34 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adtschema.dll
[2017.08.09 08:52:34 | 000,409,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msexch40.dll
[2017.08.09 08:52:34 | 000,282,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstext40.dll
[2017.08.09 08:52:34 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msobjs.dll
========== Files - Modified Within 30 Days ==========
[2017.09.01 19:29:41 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2017.09.01 19:25:21 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Uzivatel\Desktop\OTL.exe
[2017.09.01 15:23:49 | 000,008,319 | ---- | M] () -- C:\Users\Uzivatel\Desktop\Addition.zip
[2017.09.01 15:17:22 | 001,792,512 | ---- | M] (Farbar) -- C:\Users\Uzivatel\Desktop\FRST.exe
[2017.09.01 11:54:26 | 000,018,240 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2017.09.01 11:54:26 | 000,018,240 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2017.09.01 11:45:48 | 000,017,488 | ---- | M] (Windows (R) 2000 DDK provider) -- C:\Windows\gdrv.sys
[2017.09.01 11:45:42 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2017.09.01 11:45:40 | 2817,380,352 | -HS- | M] () -- C:\hiberfil.sys
[2017.09.01 11:42:45 | 000,000,308 | ---- | M] () -- C:\Windows\Brownie.ini
[2017.08.30 18:05:44 | 000,409,608 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2017.08.27 16:48:57 | 000,002,084 | ---- | M] () -- C:\Windows\wininit.ini
[2017.08.26 10:02:25 | 000,921,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\ucrtbase.dll
[2017.08.25 22:15:19 | 000,002,089 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2017.08.25 15:05:34 | 000,000,925 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2017.08.10 05:18:02 | 000,788,990 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2017.08.10 05:18:02 | 000,771,504 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2017.08.10 05:18:02 | 000,187,700 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2017.08.10 05:18:02 | 000,163,142 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2017.08.09 05:05:11 | 000,803,328 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2017.08.09 05:05:10 | 000,144,896 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
========== Files Created - No Company Name ==========
[2017.09.01 19:29:41 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2017.09.01 15:23:49 | 000,008,319 | ---- | C] () -- C:\Users\Uzivatel\Desktop\Addition.zip
[2017.09.01 15:17:36 | 000,112,640 | ---- | C] () -- C:\Users\Uzivatel\Desktop\FRSTLauncher.exe
[2017.08.27 16:12:20 | 000,002,084 | ---- | C] () -- C:\Windows\wininit.ini
[2017.07.04 10:45:50 | 000,112,000 | ---- | C] () -- C:\Windows\System32\drivers\wfcre.sys
[2017.06.14 14:47:50 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2017.01.26 13:24:17 | 000,000,600 | ---- | C] () -- C:\Users\Uzivatel\AppData\Local\PUTTY.RND
[2016.10.08 05:21:57 | 000,000,064 | ---- | C] () -- C:\Windows\GPlrLanc.dat
[2016.02.12 16:03:10 | 000,004,096 | ---- | C] () -- C:\Windows\d3dx.dat
[2014.02.20 17:41:39 | 000,306,157 | ---- | C] () -- C:\Users\Uzivatel\AppData\Roaming\log.sflog
[2013.09.21 05:12:42 | 000,002,237 | ---- | C] () -- C:\Users\Uzivatel\AppData\Local\recently-used.xbel
[2011.03.28 16:33:03 | 000,762,880 | -H-- | C] () -- C:\Users\Uzivatel\AppData\Roaming\base_en.db
[2011.01.20 18:27:40 | 000,007,597 | ---- | C] () -- C:\Users\Uzivatel\AppData\Local\Resmon.ResmonCfg
========== ZeroAccess Check ==========
[2009.07.14 06:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2017.05.10 17:12:47 | 012,880,896 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 14:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009.07.14 03:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== LOP Check ==========
[2015.10.05 09:28:52 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\.mono
[2015.02.04 08:26:05 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\8floor
[2012.08.07 06:07:04 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Alawar
[2013.01.04 17:24:38 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Alawar Entertainment
[2013.06.22 06:18:32 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Alawar Stargaze
[2016.03.09 06:30:31 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\AlawarEntertainment
[2012.06.09 05:16:25 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\aliasworlds
[2016.08.14 16:13:22 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\AMD
[2017.01.29 08:16:38 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Anvate Games
[2016.03.14 12:55:07 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Anvsoft
[2016.05.17 09:50:21 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Argali
[2012.10.27 04:59:24 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Artifex Mundi
[2013.05.21 07:01:05 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\AtlanticJourney
[2011.01.19 06:09:40 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\AVG10
[2011.09.25 07:23:35 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Awem
[2012.11.20 05:14:28 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Boolat Games
[2013.05.29 16:36:35 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Building the Great Wall of China Collectors Edition
[2012.02.20 07:45:42 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\CasualForge
[2014.10.26 17:49:37 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\CyberCradle
[2011.10.20 15:22:56 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\DAEMON Tools Lite
[2012.05.03 17:51:58 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\DieselPuppet
[2011.05.19 05:27:20 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\dingogames
[2017.02.10 05:48:02 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Downloaded Installations
[2013.08.30 16:03:55 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\EnchantedCavern
[2014.05.25 17:19:16 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\EnchantedCavern2
[2012.02.20 07:23:38 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\EscapeTheMuseum2
[2017.07.22 15:46:41 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Farm Mania
[2017.07.15 15:06:05 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Farm Mania 2
[2017.08.03 15:01:46 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Farm Mania 2.1
[2017.02.10 05:49:52 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\FileOpen
[2015.02.03 17:44:03 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Five-BN Games
[2016.02.21 05:52:00 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Floria
[2012.12.05 17:27:20 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Friday's games
[2014.11.08 17:09:27 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\FunnyGames
[2011.04.05 05:00:14 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\GHISLER
[2013.09.11 17:06:18 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\GO Games
[2012.03.31 14:38:14 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Happy Artist Studio
[2016.02.12 16:03:11 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\IteraLabs
[2012.08.01 05:26:42 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\JaiboGames
[2016.03.09 17:47:27 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Jewel Match 4_b
[2014.08.29 05:23:56 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Juniper Networks
[2013.04.14 06:36:47 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Klenoty Vychodoindicke spolecnosti
[2012.08.10 07:23:19 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\LegacyGames
[2016.09.04 07:02:19 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Legendary Mahjong
[2013.09.18 16:18:15 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Lonely Troops
[2011.11.28 06:51:11 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\md studio
[2015.09.18 11:18:04 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\MoomlAgent
[2016.05.10 14:38:14 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\MysteryTag
[2013.10.05 04:09:21 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\MythPeople
[2017.02.10 05:49:52 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Nitro
[2016.05.25 04:21:29 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Nordcurrent
[2015.12.31 05:55:40 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Opera Software
[2017.08.30 18:01:06 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Panda Security
[2011.03.28 16:34:20 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\PeaceCraft2
[2014.01.06 12:58:57 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Pirrit
[2012.03.23 06:48:04 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Princess Isabella
[2016.06.09 16:39:29 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\quickclick
[2016.09.07 09:43:22 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Rovio
[2016.09.07 13:56:08 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Rovio Entertainment Ltd
[2014.02.20 17:43:55 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\saves
[2012.02.20 06:25:51 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Settlement. Colossus
[2014.02.28 17:51:29 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Seznam.cz
[2016.10.08 05:30:32 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\SpinTop
[2014.01.06 16:07:41 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\systweak
[2014.01.06 12:58:56 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\T-App
[2013.03.15 06:30:05 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\tabagames
[2017.08.26 15:41:51 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\TeamViewer
[2016.05.08 05:23:22 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Teyon
[2012.02.23 18:12:00 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\thejoyoffarming
[2014.01.04 06:21:41 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\TOMI2.THE GATES OF FATE
[2012.12.28 17:23:05 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\TOMI3
[2013.10.29 16:28:58 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\TuneUp Software
[2015.02.17 11:54:52 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Unity
[2012.04.19 11:53:49 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\VendelGAMES
[2014.01.01 12:11:32 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\VOS
[2012.10.01 05:48:50 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\WeatherLord
[2013.04.14 06:36:43 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\WiiSports101in1
[2016.10.08 11:02:45 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\ZOG
========== Purity Check ==========
========== Custom Scans ==========
< >
[2009.07.14 06:53:46 | 000,032,616 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU(22).TXT
[2009.07.14 06:53:46 | 000,032,624 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2009.07.14 06:53:47 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
< >
< MD5 for: ATAPI.SYS >
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\drivers\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_a5025d31bee4647c\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_fab873f3e8a3315c\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_df3f92057fcbe7a7\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.18231_none_df26d4d57fdef5b0\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.22414_none_dfc9143c98e9a6c4\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2010.11.20 14:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\System32\autochk.exe
[2010.11.20 14:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe
< MD5 for: CDROM.SYS >
[2010.11.20 10:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\drivers\cdrom.sys
[2010.11.20 10:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_neutral_6381e09675524225\cdrom.sys
[2010.11.20 10:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_61b0c5ce02098355\cdrom.sys
< MD5 for: EXPLORER.EXE >
[2010.11.20 14:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_53bc10fdd7fe87ca\explorer.exe
[2016.08.29 16:55:07 | 002,972,672 | ---- | M] (Microsoft Corporation) MD5=6DDCA324434FFA506CF7DC4E51DB7935 -- C:\Windows\explorer.exe
[2016.08.29 16:55:07 | 002,972,672 | ---- | M] (Microsoft Corporation) MD5=6DDCA324434FFA506CF7DC4E51DB7935 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.23537_none_5432df58f129e196\explorer.exe
< MD5 for: HAL.DLL >
[2010.11.20 14:29:53 | 000,194,432 | ---- | M] (Microsoft Corporation) MD5=1BF0D4727FDB437D513CFF8A9359C050 -- C:\Windows\System32\hal.dll
[2010.11.20 14:29:53 | 000,194,432 | ---- | M] (Microsoft Corporation) MD5=1BF0D4727FDB437D513CFF8A9359C050 -- C:\Windows\winsxs\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_ad305c8fb7ec5060\hal.dll
< MD5 for: SCECLI.DLL >
[2010.11.20 14:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\System32\scecli.dll
[2010.11.20 14:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_3a154c47375d881d\scecli.dll
< MD5 for: SERVICES.EXE >
[2015.04.13 05:19:24 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=0780A42DBD7D9969F9BF4A19AA4285B5 -- C:\Windows\System32\services.exe
[2015.04.13 05:19:24 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=0780A42DBD7D9969F9BF4A19AA4285B5 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7601.18829_none_d1614ac32b8ec5cf\services.exe
[2009.07.14 03:14:36 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=5F1B6A9C35D3D5CA72D6D6FDEF9747D6 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_cf36168b2e9c967b\services.exe
[2015.04.11 05:53:55 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=97981140500E86E5BBAD7B76BA890146 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7601.23033_none_d1d9ee0844ba1cc2\services.exe
< MD5 for: SVCHOST.EXE >
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\System32\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
< MD5 for: TCPIP.SYS >
[2010.11.20 14:30:12 | 001,290,112 | ---- | M] (Microsoft Corporation) MD5=37E8FA3779668837CA9E2C36D2415949 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_b5257c3dc4a85a01\tcpip.sys
[2017.05.30 06:39:05 | 001,309,928 | ---- | M] (Microsoft Corporation) MD5=C25848DB4A86839A7EDD1077F62AD980 -- C:\Windows\System32\drivers\tcpip.sys
[2017.05.30 06:39:05 | 001,309,928 | ---- | M] (Microsoft Corporation) MD5=C25848DB4A86839A7EDD1077F62AD980 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.23821_none_b5a11e7addd0f747\tcpip.sys
[2016.07.07 17:20:44 | 001,309,928 | ---- | M] (Microsoft Corporation) MD5=C7E41209132B9CF084CCEA8593F61328 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.23496_none_b55a68e0de0544f5\tcpip.sys
[2012.10.03 18:44:01 | 001,308,040 | ---- | M] (Microsoft Corporation) MD5=D490DD0A91B4EAC3B4EE08D11EE37C31 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22124_none_b5a428d6ddce3d9a\tcpip.sys
[2012.10.03 18:58:30 | 001,293,680 | ---- | M] (Microsoft Corporation) MD5=E23A56F843E2AEBBB209D0ACCA73C640 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17964_none_b4ef7439c4d0da52\tcpip.sys
< MD5 for: USERINIT.EXE >
[2010.11.20 14:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\System32\userinit.exe
[2010.11.20 14:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
< MD5 for: WINLOGON.EXE >
[2014.07.16 04:56:14 | 000,304,640 | ---- | M] (Microsoft Corporation) MD5=4F37B93C14AEE313BEC52A23AFB15C2E -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.22750_none_7224b2134c7555fa\winlogon.exe
[2014.07.17 03:39:27 | 000,304,128 | ---- | M] (Microsoft Corporation) MD5=52449FD429D6053B78AE564DEF303870 -- C:\Windows\System32\winlogon.exe
[2014.07.17 03:39:27 | 000,304,128 | ---- | M] (Microsoft Corporation) MD5=52449FD429D6053B78AE564DEF303870 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.18540_none_71a5e34e334f9d18\winlogon.exe
[2010.11.20 14:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_71ca6b0233339500\winlogon.exe
[2014.03.04 11:17:02 | 000,304,128 | ---- | M] (Microsoft Corporation) MD5=998507B046BA314CE8245364C686FA67 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.18409_none_71da23b23327143c\winlogon.exe
[2014.03.04 12:39:02 | 000,304,640 | ---- | M] (Microsoft Corporation) MD5=D53972F87D850CD2EB4B29B60CAFDD77 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.22616_none_7255f1994c4f8119\winlogon.exe
< >
< %systemroot%*.* /U /s >
[7 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[3 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[1 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\t4c\2b70a639\17f1791b\*.tmp files -> C:\Windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\t4c\2b70a639\17f1791b\*.tmp -> ]
[1 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\t4c\c81c73ec\236a7478\*.tmp files -> C:\Windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\t4c\c81c73ec\236a7478\*.tmp -> ]
[2 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2015.10.05 09:28:52 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\.mono
[2015.02.04 08:26:05 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\8floor
[2015.09.18 11:15:13 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Adobe
[2012.08.07 06:07:04 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Alawar
[2013.01.04 17:24:38 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Alawar Entertainment
[2013.06.22 06:18:32 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Alawar Stargaze
[2016.03.09 06:30:31 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\AlawarEntertainment
[2012.06.09 05:16:25 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\aliasworlds
[2016.08.14 16:13:22 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\AMD
[2017.01.29 08:16:38 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Anvate Games
[2016.03.14 12:55:07 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Anvsoft
[2016.05.17 09:50:21 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Argali
[2012.10.27 04:59:24 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Artifex Mundi
[2010.08.25 07:34:46 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\ATI
[2013.05.21 07:01:05 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\AtlanticJourney
[2011.01.19 06:09:40 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\AVG10
[2011.09.25 07:23:35 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Awem
[2012.11.20 05:14:28 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Boolat Games
[2011.02.05 11:57:07 | 000,000,000 | R--D | M] -- C:\Users\Uzivatel\AppData\Roaming\Brother
[2013.05.29 16:36:35 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Building the Great Wall of China Collectors Edition
[2012.02.20 07:45:42 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\CasualForge
[2014.10.26 17:49:37 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\CyberCradle
[2011.10.20 15:22:56 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\DAEMON Tools Lite
[2012.05.03 17:51:58 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\DieselPuppet
[2011.05.19 05:27:20 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\dingogames
[2017.02.10 05:48:02 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Downloaded Installations
[2013.08.30 16:03:55 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\EnchantedCavern
[2014.05.25 17:19:16 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\EnchantedCavern2
[2012.02.20 07:23:38 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\EscapeTheMuseum2
[2017.07.22 15:46:41 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Farm Mania
[2017.07.15 15:06:05 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Farm Mania 2
[2017.08.03 15:01:46 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Farm Mania 2.1
[2017.02.10 05:49:52 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\FileOpen
[2015.02.03 17:44:03 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Five-BN Games
[2016.02.21 05:52:00 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Floria
[2012.12.05 17:27:20 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Friday's games
[2014.11.08 17:09:27 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\FunnyGames
[2011.04.05 05:00:14 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\GHISLER
[2013.09.11 17:06:18 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\GO Games
[2012.03.31 14:38:14 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Happy Artist Studio
[2010.08.27 18:57:20 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\HP
[2010.08.25 07:18:02 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Identities
[2010.08.25 07:25:39 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\InstallShield
[2016.02.12 16:03:11 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\IteraLabs
[2012.08.01 05:26:42 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\JaiboGames
[2016.03.09 17:47:27 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Jewel Match 4_b
[2014.08.29 05:23:56 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Juniper Networks
[2013.04.14 06:36:47 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Klenoty Vychodoindicke spolecnosti
[2012.08.10 07:23:19 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\LegacyGames
[2016.09.04 07:02:19 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Legendary Mahjong
[2013.09.18 16:18:15 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Lonely Troops
[2010.08.25 10:24:31 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Macromedia
[2011.11.28 06:51:11 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\md studio
[2009.07.14 11:20:06 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Media Center Programs
[2016.09.06 15:58:51 | 000,000,000 | --SD | M] -- C:\Users\Uzivatel\AppData\Roaming\Microsoft
[2015.09.18 11:18:04 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\MoomlAgent
[2015.10.16 19:11:07 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Mozilla
[2016.05.10 14:38:14 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\MysteryTag
[2013.10.05 04:09:21 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\MythPeople
[2013.08.28 15:24:30 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Nero
[2017.02.10 05:49:52 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Nitro
[2016.05.25 04:21:29 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Nordcurrent
[2015.12.31 05:55:40 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Opera Software
[2017.08.30 18:01:06 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Panda Security
[2011.03.28 16:34:20 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\PeaceCraft2
[2014.01.06 12:58:57 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Pirrit
[2012.03.23 06:48:04 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Princess Isabella
[2016.06.09 16:39:29 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\quickclick
[2016.09.07 09:43:22 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Rovio
[2016.09.07 13:56:08 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Rovio Entertainment Ltd
[2014.02.20 17:43:55 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\saves
[2012.02.20 06:25:51 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Settlement. Colossus
[2014.02.28 17:51:29 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Seznam.cz
[2016.08.23 17:55:36 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Skype
[2016.10.08 05:30:32 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\SpinTop
[2014.01.06 16:07:41 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\systweak
[2014.01.06 12:58:56 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\T-App
[2013.03.15 06:30:05 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\tabagames
[2017.08.26 15:41:51 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\TeamViewer
[2016.05.08 05:23:22 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Teyon
[2012.02.23 18:12:00 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\thejoyoffarming
[2014.01.04 06:21:41 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\TOMI2.THE GATES OF FATE
[2012.12.28 17:23:05 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\TOMI3
[2013.10.29 16:28:58 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\TuneUp Software
[2015.02.17 11:54:52 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Unity
[2012.04.19 11:53:49 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\VendelGAMES
[2017.08.31 04:31:43 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\vlc
[2014.01.01 12:11:32 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\VOS
[2012.10.01 05:48:50 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\WeatherLord
[2013.04.14 06:36:43 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\WiiSports101in1
[2016.10.08 11:02:45 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\ZOG
< %APPDATA%\*.exe /s >
[2016.02.16 05:07:22 | 000,310,960 | ---- | M] (Adobe Systems Inc.) -- C:\Users\Uzivatel\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
[2017.04.28 16:08:51 | 000,251,848 | R--- | M] (Acresso Software Inc.) -- C:\Users\Uzivatel\AppData\Roaming\Microsoft\Installer\{1896CB18-36FE-4AA6-8F9C-F42C087941CD}\ARPPRODUCTICON.exe
[2017.04.28 16:08:51 | 000,251,848 | R--- | M] (Acresso Software Inc.) -- C:\Users\Uzivatel\AppData\Roaming\Microsoft\Installer\{1896CB18-36FE-4AA6-8F9C-F42C087941CD}\NewShortcut1_E004384A8D9148B78F6A2EE52F39EAF6.exe
[2010.08.25 08:41:11 | 000,002,998 | R--- | M] () -- C:\Users\Uzivatel\AppData\Roaming\Microsoft\Installer\{A4FEEED3-51B4-4BBA-ACB2-8820EED93C52}\ARPPRODUCTICON.exe
[2011.06.08 02:06:31 | 000,002,998 | R--- | M] () -- C:\Users\Uzivatel\AppData\Roaming\Microsoft\Installer\{AD145AD6-8697-463B-AB76-B48C21242917}\ARPPRODUCTICON.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2017.09.01 11:54:26 | 000,018,240 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2017.09.01 11:54:26 | 000,018,240 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2017.08.30 18:05:44 | 000,409,608 | ---- | M] () -- C:\Windows\system32\FNTCACHE.DAT
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"OneDrive" = "C:\Users\Uzivatel\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background -- [2017.07.25 18:08:32 | 001,536,208 | ---- | M] (Microsoft Corporation)
"RoboTask Lite" = "C:\Program Files\RoboTask Lite\RoboTaskLite.exe" -- [2013.12.05 12:30:40 | 001,915,720 | ---- | M] (Neowise)
"RESTART_STICKY_NOTES" = C:\Windows\System32\StikyNot.exe -- [2009.07.14 03:14:41 | 000,354,304 | ---- | M] (Microsoft Corporation)
< >
< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >
[2017.08.26 04:31:40 | 000,532,432 | ---- | M] (Mozilla Corporation) MD5=97E689B69A93F3729CB9F1B3C072BAA1 -- C:\Program Files\Mozilla Firefox\firefox.exe
< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2015.12.17 00:29:17 | 000,770,736 | ---- | M] (Microsoft Corporation) MD5=21CDC1BC5A23B230C2337F56867599D7 -- C:\Program Files\Internet Explorer\iexplore.exe
< %PROGRAMFILES%\Opera\opera.exe /md5 >
< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >
[2017.08.23 09:31:43 | 001,131,864 | ---- | M] (Google Inc.) MD5=3BB184B7A39FA79910FD1BA149FBB943 -- C:\Program Files\Google\Chrome\Application\chrome.exe
< >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2017.09.01 19:29:41 | 000,000,512 | ---- | M] () MD5=59A8231D49C92E62A9DA7AED92391F73 -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[2013.06.24 21:20:50 | 000,062,238 | ---- | M] () -- \Program Files\GIMP 2\share\gimp\2.0\patterns\cracked.pat
[2012.09.05 08:41:40 | 000,008,600 | ---- | M] () -- \Program Files\Hry.cz\Jewel Match 4\images\hog\fishing boat\cracker.png
[2012.09.05 18:41:40 | 000,008,600 | ---- | M] () -- \Program Files\Hry.cz\Jewel Match 4\images\hog\w1_fishing_boat_hog\cracker.png
[1995.11.24 01:19:04 | 000,027,849 | ---- | M] () -- \Users\Uzivatel\Downloads\SWCHESS\CAPTURES\CRACKLE.DSF
< *keygen* /s >
Re: Podivné chování prohlížečů
< *loader* /s >
[2013.01.23 10:59:00 | 000,528,896 | ---- | M] () -- \BackupShare\T4CAppsBackup\Bin\VCPCDownloader.exe
[2013.01.23 10:59:01 | 000,015,872 | ---- | M] () -- \BackupShare\T4CAppsBackup\Bin\VCPCDownloader.pdb
[2013.01.23 10:59:00 | 000,528,896 | ---- | M] () -- \BackupShare\T4CAppsBackup\CacheMonitor\VCPCDownloader.exe
[2013.01.23 10:59:01 | 000,015,872 | ---- | M] () -- \BackupShare\T4CAppsBackup\CacheMonitor\VCPCDownloader.pdb
[2013.01.23 10:59:00 | 000,528,896 | ---- | M] () -- \BackupShare\T4CAppsBackup\NedapCowLocator\VCPCDownloader.exe
[2013.01.23 10:59:01 | 000,015,872 | ---- | M] () -- \BackupShare\T4CAppsBackup\NedapCowLocator\VCPCDownloader.pdb
[2016.12.15 14:12:41 | 000,000,687 | ---- | M] () -- \BackupShare\T4CAppsBackup\T4C\Content\Loader.aspx
[2016.12.15 14:12:00 | 000,005,886 | ---- | M] () -- \BackupShare\T4CAppsBackup\T4C\Includes\Images\ajax_loader.gif
[2016.12.15 14:12:00 | 000,001,707 | ---- | M] () -- \BackupShare\T4CAppsBackup\T4C\Includes\Images\ajax_loader.png
[2016.12.15 14:12:00 | 000,005,886 | ---- | M] () -- \BackupShare\T4CAppsBackup\T4C\Includes\Images\ajax_loader_big.gif
[2016.12.15 14:12:01 | 000,001,707 | ---- | M] () -- \BackupShare\T4CAppsBackup\T4C\Includes\Images\ajax_loader_big.png
[2013.01.23 10:59:00 | 000,528,896 | ---- | M] () -- \BackupShare\T4CAppsBackup\VcpcSynch\VCPCDownloader.exe
[2013.01.23 10:59:01 | 000,015,872 | ---- | M] () -- \BackupShare\T4CAppsBackup\VcpcSynch\VCPCDownloader.pdb
[2013.09.04 09:33:24 | 000,086,016 | R--- | M] () -- \LELY FILES\Software\Milking and cooling software set 2016-45\Tooling\Ethernet Uploader\EthUploaderv1.03.exe
[2010.02.10 18:10:14 | 000,045,056 | ---- | M] () -- \Program Files (x86)\WinRAR\RarExtLoader.exe
[2001.01.16 07:55:36 | 000,053,248 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VS7DEBUG\COLOADER.DLL
[2001.01.16 05:22:34 | 000,002,560 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VS7DEBUG\COLOADER.TLB
[2011.03.08 09:43:28 | 000,013,734 | ---- | M] () -- \Program Files\GIMP 2\Python\Lib\unittest\loader.py
[2013.01.23 10:59:00 | 000,528,896 | ---- | M] () -- \Program Files\Lely\T4C\Bin\VCPCDownloader.exe
[2013.01.23 10:59:01 | 000,015,872 | ---- | M] () -- \Program Files\Lely\T4C\Bin\VCPCDownloader.pdb
[2013.03.23 00:56:39 | 000,011,264 | ---- | M] () -- \Program Files\Lely\T4C\Common\Tools\NewUpgrade\Prerequisite\LelyPrerequisiteDownloader.exe
[2017.08.01 16:29:44 | 000,006,144 | ---- | M] () -- \Program Files\Lely\T4C\Common\Tools\NewUpgrade\PrerequisiteDownloader\PrerequisiteDownloader.exe
[2017.08.01 16:29:44 | 000,013,824 | ---- | M] () -- \Program Files\Lely\T4C\Common\Tools\NewUpgrade\PrerequisiteDownloader\PrerequisiteDownloader.pdb
[2017.09.01 19:18:33 | 001,187,607 | ---- | M] () -- \Program Files\Lely\T4C\Common\Tools\NewUpgrade\PrerequisiteDownloader\Trace\PrerequisiteDownloader.trace.txt
[2017.08.30 00:25:08 | 010,485,765 | ---- | M] () -- \Program Files\Lely\T4C\Common\Tools\NewUpgrade\PrerequisiteDownloader\Trace\PrerequisiteDownloader.trace.txt.1
[2017.01.12 16:28:33 | 010,485,783 | ---- | M] () -- \Program Files\Lely\T4C\Common\Tools\NewUpgrade\PrerequisiteDownloader\Trace\PrerequisiteDownloader.trace.txt.10
[2017.08.04 22:09:19 | 010,485,767 | ---- | M] () -- \Program Files\Lely\T4C\Common\Tools\NewUpgrade\PrerequisiteDownloader\Trace\PrerequisiteDownloader.trace.txt.2
[2017.07.10 05:20:03 | 010,485,825 | ---- | M] () -- \Program Files\Lely\T4C\Common\Tools\NewUpgrade\PrerequisiteDownloader\Trace\PrerequisiteDownloader.trace.txt.3
[2017.06.14 18:59:53 | 010,485,789 | ---- | M] () -- \Program Files\Lely\T4C\Common\Tools\NewUpgrade\PrerequisiteDownloader\Trace\PrerequisiteDownloader.trace.txt.4
[2017.05.20 05:52:13 | 010,485,868 | ---- | M] () -- \Program Files\Lely\T4C\Common\Tools\NewUpgrade\PrerequisiteDownloader\Trace\PrerequisiteDownloader.trace.txt.5
[2017.04.24 17:04:27 | 010,485,868 | ---- | M] () -- \Program Files\Lely\T4C\Common\Tools\NewUpgrade\PrerequisiteDownloader\Trace\PrerequisiteDownloader.trace.txt.6
[2017.03.30 03:12:08 | 010,485,888 | ---- | M] () -- \Program Files\Lely\T4C\Common\Tools\NewUpgrade\PrerequisiteDownloader\Trace\PrerequisiteDownloader.trace.txt.7
[2017.03.04 11:43:16 | 010,485,854 | ---- | M] () -- \Program Files\Lely\T4C\Common\Tools\NewUpgrade\PrerequisiteDownloader\Trace\PrerequisiteDownloader.trace.txt.8
[2017.02.07 01:31:30 | 010,485,884 | ---- | M] () -- \Program Files\Lely\T4C\Common\Tools\NewUpgrade\PrerequisiteDownloader\Trace\PrerequisiteDownloader.trace.txt.9
[2016.12.15 14:12:41 | 000,000,687 | ---- | M] () -- \Program Files\Lely\T4C\Site\Content\Loader.aspx
[2016.12.15 14:12:00 | 000,005,886 | ---- | M] () -- \Program Files\Lely\T4C\Site\Includes\Images\ajax_loader.gif
[2016.12.15 14:12:00 | 000,001,707 | ---- | M] () -- \Program Files\Lely\T4C\Site\Includes\Images\ajax_loader.png
[2016.12.15 14:12:00 | 000,005,886 | ---- | M] () -- \Program Files\Lely\T4C\Site\Includes\Images\ajax_loader_big.gif
[2016.12.15 14:12:01 | 000,001,707 | ---- | M] () -- \Program Files\Lely\T4C\Site\Includes\Images\ajax_loader_big.png
[2017.08.01 16:29:44 | 000,006,144 | ---- | M] () -- \Program Files\Lely\T4C\Temp\SilentHotfixFiles\PrerequisiteDownloader\PrerequisiteDownloader.exe
[2017.08.01 16:29:44 | 000,013,824 | ---- | M] () -- \Program Files\Lely\T4C\Temp\SilentHotfixFiles\PrerequisiteDownloader\PrerequisiteDownloader.pdb
[2016.12.15 14:12:41 | 000,000,687 | ---- | M] () -- \Program Files\Lely\T4C\Temp\SilentUpgradeFiles\Apps\T4C\Content\Loader.aspx
[2016.12.15 14:12:00 | 000,005,886 | ---- | M] () -- \Program Files\Lely\T4C\Temp\SilentUpgradeFiles\Apps\T4C\Includes\Images\ajax_loader.gif
[2016.12.15 14:12:00 | 000,001,707 | ---- | M] () -- \Program Files\Lely\T4C\Temp\SilentUpgradeFiles\Apps\T4C\Includes\Images\ajax_loader.png
[2016.12.15 14:12:00 | 000,005,886 | ---- | M] () -- \Program Files\Lely\T4C\Temp\SilentUpgradeFiles\Apps\T4C\Includes\Images\ajax_loader_big.gif
[2016.12.15 14:12:01 | 000,001,707 | ---- | M] () -- \Program Files\Lely\T4C\Temp\SilentUpgradeFiles\Apps\T4C\Includes\Images\ajax_loader_big.png
[2017.05.22 18:42:10 | 000,528,896 | ---- | M] () -- \Program Files\Lely\T4C\Temp\SilentUpgradeFiles\Apps\VcpcDown\VCPCDownloader.exe
[2017.05.22 18:42:10 | 000,015,872 | ---- | M] () -- \Program Files\Lely\T4C\Temp\SilentUpgradeFiles\Apps\VcpcDown\VCPCDownloader.pdb
[2017.05.22 18:42:10 | 000,528,896 | ---- | M] () -- \Program Files\Lely\T4C\Temp\SilentUpgradeFiles\Flat\VCPCDownloader.exe
[2017.05.22 18:42:10 | 000,015,872 | ---- | M] () -- \Program Files\Lely\T4C\Temp\SilentUpgradeFiles\Flat\VCPCDownloader.pdb
[2017.05.22 18:28:12 | 000,006,144 | ---- | M] () -- \Program Files\Lely\T4C\Temp\SilentUpgradeFiles\PrerequisiteDownloader\PrerequisiteDownloader.exe
[2017.05.22 18:28:11 | 000,013,824 | ---- | M] () -- \Program Files\Lely\T4C\Temp\SilentUpgradeFiles\PrerequisiteDownloader\PrerequisiteDownloader.pdb
[2009.01.16 01:52:48 | 000,000,816 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v710\bin\registry\dotnetcli_loader.xml
[2009.01.27 17:19:56 | 000,007,680 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v710\bin\win32\dotnetcli_loader.dll
[2009.02.03 23:01:28 | 000,014,087 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v710\help\toolbox\javabuilder\MWArrayAPI\com\mathworks\toolbox\javabuilder\MWCtfClassLoaderSource.html
[2003.07.10 00:11:38 | 000,011,436 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v710\sys\perl\win32\lib\AutoLoader.pm
[2005.09.12 14:21:36 | 000,000,727 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v710\sys\perl\win32\lib\ByteLoader.pm
[2007.01.23 15:58:08 | 000,028,960 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v710\sys\perl\win32\lib\DynaLoader.pm
[2003.08.14 00:44:12 | 000,012,953 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v710\sys\perl\win32\lib\SelfLoader.pm
[2007.01.23 15:58:08 | 000,010,818 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v710\sys\perl\win32\lib\XSLoader.pm
[2007.01.23 15:58:30 | 000,000,000 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v710\sys\perl\win32\lib\auto\ByteLoader\ByteLoader.bs
[2007.01.23 15:58:28 | 000,028,782 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v710\sys\perl\win32\lib\auto\ByteLoader\ByteLoader.dll
[2007.01.23 15:58:28 | 000,000,817 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v710\sys\perl\win32\lib\auto\ByteLoader\ByteLoader.exp
[2007.01.23 15:58:28 | 000,002,212 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v710\sys\perl\win32\lib\auto\ByteLoader\ByteLoader.lib
[2003.07.10 00:11:48 | 000,001,324 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v710\sys\perl\win32\lib\Locale\Maketext\GutsLoader.pm
[2008.10.08 13:14:06 | 000,000,257 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v710\toolbox\local\classloader.txt
[2010.01.18 18:18:46 | 000,000,816 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v713\bin\registry\dotnetcli_loader.xml
[2010.01.18 22:46:28 | 000,024,576 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v713\bin\win32\dotnetcli_loader.dll
[2010.01.18 22:46:28 | 000,014,050 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v713\bin\win32\dotnetcli_loader.dll.csf
[2010.01.15 17:32:40 | 000,014,087 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v713\help\toolbox\javabuilder\MWArrayAPI\com\mathworks\toolbox\javabuilder\MWCtfClassLoaderSource.html
[2003.07.09 23:11:38 | 000,011,436 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v713\sys\perl\win32\lib\AutoLoader.pm
[2005.09.12 13:21:36 | 000,000,727 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v713\sys\perl\win32\lib\ByteLoader.pm
[2007.01.23 15:58:08 | 000,028,960 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v713\sys\perl\win32\lib\DynaLoader.pm
[2003.08.13 23:44:12 | 000,012,953 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v713\sys\perl\win32\lib\SelfLoader.pm
[2007.01.23 15:58:08 | 000,010,818 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v713\sys\perl\win32\lib\XSLoader.pm
[2007.01.23 15:58:30 | 000,000,000 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v713\sys\perl\win32\lib\auto\ByteLoader\ByteLoader.bs
[2007.01.23 15:58:28 | 000,028,782 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v713\sys\perl\win32\lib\auto\ByteLoader\ByteLoader.dll
[2007.01.23 15:58:28 | 000,000,817 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v713\sys\perl\win32\lib\auto\ByteLoader\ByteLoader.exp
[2007.01.23 15:58:28 | 000,002,212 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v713\sys\perl\win32\lib\auto\ByteLoader\ByteLoader.lib
[2003.07.09 23:11:48 | 000,001,324 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v713\sys\perl\win32\lib\Locale\Maketext\GutsLoader.pm
[2008.10.08 12:14:06 | 000,000,257 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v713\toolbox\local\classloader.txt
[2013.02.13 03:10:58 | 000,000,103 | ---- | M] () -- \Program Files\Microsoft SQL Server\100\Setup Bootstrap\Log\20130213_020735\Datastore\_Extension_Agent_SqlResourceLoaderPath.xml
[2013.06.25 04:52:39 | 000,000,103 | ---- | M] () -- \Program Files\Microsoft SQL Server\100\Setup Bootstrap\Log\20130625_045020\T4C3\Datastore\_Extension_Agent_SqlResourceLoaderPath.xml
[2014.08.22 12:56:45 | 000,000,103 | ---- | M] () -- \Program Files\Microsoft SQL Server\100\Setup Bootstrap\Log\20140822_125421\T4C3\Datastore\_Extension_Agent_SqlResourceLoaderPath.xml
[2014.08.23 03:04:26 | 000,000,103 | ---- | M] () -- \Program Files\Microsoft SQL Server\100\Setup Bootstrap\Log\20140823_030119\T4C3\Datastore\_Extension_Agent_SqlResourceLoaderPath.xml
[2015.07.15 16:06:51 | 000,000,103 | ---- | M] () -- \Program Files\Microsoft SQL Server\100\Setup Bootstrap\Log\20150715_160239\T4C3\Datastore\_Extension_Agent_SqlResourceLoaderPath.xml
[2010.04.03 20:47:24 | 000,016,736 | ---- | M] () -- \Program Files\Microsoft SQL Server\100\Tools\Binn\SqlResourceLoader.dll
[2005.10.14 12:49:47 | 000,017,624 | ---- | M] () -- \Program Files\Microsoft SQL Server\90\Tools\Binn\SqlResourceLoader.dll
[2010.04.03 20:47:24 | 000,016,736 | ---- | M] () -- \Program Files\Microsoft SQL Server\MSSQL10_50.T4C3\MSSQL\Binn\SqlResourceLoader.dll
[2017.01.27 06:32:49 | 000,018,624 | ---- | M] () -- \Program Files\Mozilla Firefox\api-ms-win-core-libraryloader-l1-1-0.dll
[2017.07.25 18:08:29 | 000,019,152 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Microsoft\OneDrive\17.3.6943.0625\api-ms-win-core-libraryloader-l1-1-0.dll
[2017.09.01 05:33:05 | 000,008,432 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MOS3ZOK7\loader[1].gif
[2017.08.31 05:27:59 | 000,005,886 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R54IA97Y\ajax_loader_big[1].gif
[2017.08.30 16:19:26 | 000,008,581 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R54IA97Y\bx_loader[1].gif
[2015.03.12 11:47:42 | 000,072,638 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Skype\Apps\login\images\loader.gif
[2015.03.12 11:47:42 | 000,003,032 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Skype\Apps\login\images\loader.png
[2015.03.12 11:47:42 | 000,006,012 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Skype\Apps\login\images\normal\loader_15fps.gif
[2015.03.12 11:47:42 | 000,021,956 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Skype\Apps\login\images\normal\loader_30fps.gif
[2015.03.12 11:47:42 | 000,009,772 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Skype\Apps\login\images\retina\loader@2x.png
[2007.01.30 14:57:36 | 000,086,016 | R--- | M] () -- \Users\Uzivatel\Desktop\Lely files\DSS v01.20SR3\Tools 1.20SR3\EthernetUpLoader\EthUploaderv1.02.exe
[2016.02.27 16:07:43 | 000,020,706 | ---- | M] () -- \Users\Uzivatel\Desktop\TIP Co dělat při pravidelném výskytu „modré obrazovky smrti“ _ PC World.cz_soubory\lazyad-loader.js
[2011.03.07 06:38:13 | 000,002,041 | ---- | M] () -- \Users\Uzivatel\Desktop\WEB\Hubnoucí komando Tvarování postavy - ProZeny_cz_soubory\loader.js
[2017.01.01 10:13:14 | 000,002,059 | ---- | M] () -- \Users\Uzivatel\Downloads\Megamek 0.42\data\images\units\mechs\Patron I LoaderMech.png
[2017.01.01 10:13:14 | 000,002,059 | ---- | M] () -- \Users\Uzivatel\Downloads\Megamek 0.42\data\images\units\mechs\Patron LoaderMech.png
[2017.01.01 10:13:14 | 000,000,307 | ---- | M] () -- \Users\Uzivatel\Downloads\Megamek 0.42\data\images\units\unused\units_original\mechs\Patron I LoaderMech_original.gif
[2017.01.01 10:13:14 | 000,000,307 | ---- | M] () -- \Users\Uzivatel\Downloads\Megamek 0.42\data\images\units\unused\units_original\mechs\Patron LoaderMech_original.gif
[2016.06.05 17:05:52 | 000,000,307 | ---- | M] () -- \Users\Uzivatel\Downloads\Megamek\data\images\units\mechs\Patron I LoaderMech.gif
[2016.06.05 17:05:52 | 000,000,307 | ---- | M] () -- \Users\Uzivatel\Downloads\Megamek\data\images\units\mechs\Patron LoaderMech.gif
[2010.10.07 03:36:17 | 000,000,326 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\t4c\2b70a639\17f1791b\loader.aspx.baefa154.compiled
[1 \Windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\t4c\2b70a639\17f1791b\*.tmp files -> \Windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\t4c\2b70a639\17f1791b\*.tmp -> ]
[2014.05.16 09:37:01 | 000,000,321 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\t4c\c81c73ec\236a7478\loader.aspx.baefa154.compiled
[1 \Windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\t4c\c81c73ec\236a7478\*.tmp files -> \Windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\t4c\c81c73ec\236a7478\*.tmp -> ]
[2017.08.30 03:53:33 | 000,000,332 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\Temporary ASP.NET Files\t4c\c81c73ec\236a7478\loader.aspx.baefa154.compiled
[2017.09.01 19:18:33 | 000,058,048 | ---- | M] () -- \Windows\Prefetch\PREREQUISITEDOWNLOADER.EXE-FD51322D.pf
[2009.07.14 14:25:34 | 002,202,645 | R--- | M] () -- \Windows\Setup\SCRIPTS\Windows7Loader.exe
[2017.04.17 17:12:13 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2013.04.15 15:57:22 | 000,229,376 | ---- | M] () -- \Windows\System32\dsGinaLoader.dll
[2009.07.14 06:54:01 | 000,003,532 | ---- | M] () -- \Windows\System32\Tasks\Microsoft\Windows\WindowsColorSystem\Calibration Loader
[2017.08.10 03:02:04 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23864_cs-cz_359d3c007491ec2f.manifest
[2017.08.10 03:02:04 | 000,034,536 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23864_cs-cz_359d3c007491ec2f_winload.exe.mui_3bc5b827
[2017.08.10 03:02:05 | 000,030,440 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23864_cs-cz_359d3c007491ec2f_winresume.exe.mui_ff8b5358
[2017.08.10 03:01:48 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23864_none_5d818788e42f5262.manifest
[2017.08.10 03:01:48 | 000,534,600 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23864_none_5d818788e42f5262_winload.exe_75835076
[2017.08.10 03:01:48 | 000,470,704 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23864_none_5d818788e42f5262_winresume.exe_85cd1215
[2009.07.14 04:17:38 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009.07.14 04:17:38 | 000,017,472 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23_spldr.sys_98bd87a0
[2015.05.09 11:14:43 | 000,000,612 | ---- | M] () -- \Windows\winsxs\FileMaps\programdata_microsoft_diagnosis_asimovuploader_0413bca0c3dfdda4.cdf-ms
[2009.07.14 10:42:11 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86.manifest
[2015.01.16 08:24:33 | 000,002,777 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_cs-cz_35c794147472469a.manifest
[2015.04.27 21:41:46 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23040_cs-cz_35aecb80748565b9.manifest
[2015.05.25 20:50:50 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_cs-cz_35905c50749bec3a.manifest
[2015.07.15 05:32:43 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23126_cs-cz_35ca6efa746fc308.manifest
[2015.07.15 20:44:27 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23136_cs-cz_35bf9f0e7477def9.manifest
[2015.07.23 03:24:51 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23142_cs-cz_35b0cdfa7483958e.manifest
[2016.01.22 08:42:13 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23338_cs-cz_35c1a36e74760bf5.manifest
[2016.03.16 21:09:18 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23391_cs-cz_3579c1e074ad023a.manifest
[2016.03.18 01:01:03 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23392_cs-cz_357ac22a74ac1b91.manifest
[2016.09.02 17:44:19 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23539_cs-cz_35c2a78474751f9a.manifest
[2017.07.07 17:32:42 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23864_cs-cz_359d3c007491ec2f.manifest
[2010.11.20 05:02:40 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953.manifest
[2015.01.14 08:45:13 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.22923_none_5dabdf9ce40faccd.manifest
[2015.04.27 21:17:27 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23040_none_5d931708e422cbec.manifest
[2015.05.25 20:35:55 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23072_none_5d74a7d8e439526d.manifest
[2015.07.15 05:25:32 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23126_none_5daeba82e40d293b.manifest
[2015.07.15 20:16:39 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23136_none_5da3ea96e415452c.manifest
[2015.07.23 02:23:37 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23142_none_5d951982e420fbc1.manifest
[2016.01.22 08:39:54 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23338_none_5da5eef6e4137228.manifest
[2016.03.16 21:02:45 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23391_none_5d5e0d68e44a686d.manifest
[2016.03.18 00:51:44 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23392_none_5d5f0db2e44981c4.manifest
[2016.09.02 17:45:24 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23539_none_5da6f30ce41285cd.manifest
[2017.07.07 17:29:10 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23864_none_5d818788e42f5262.manifest
[2009.07.14 03:52:31 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2017.08.26 10:02:31 | 000,019,136 | ---- | M] () -- \Windows\winsxs\x86_avast.vc140.crt_fcc99ee6193ebbca_14.0.24210.0_none_9e58d6f8311e6fc8\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:45:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_0cba39e5da114d7c\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 03:48:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18229_none_0cb36eedda15c917\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.01.22 07:59:07 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.19135_none_0ca4852bda219c26\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:46:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_0d04f7bcf35dc79a\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.04.12 04:03:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22653_none_0d169feaf3511c1f\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.01.22 07:58:11 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23338_none_0d3124baf33c851c\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.03.16 20:23:40 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23391_none_0ce9432cf3737b61\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.03.18 00:24:26 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23392_none_0cea4376f37294b8\api-ms-win-core-libraryloader-l1-1-0.dll
[2017.04.17 17:12:13 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23775_none_0d02ebc4f35f9d77\api-ms-win-core-libraryloader-l1-1-0.dll
========== Files - Unicode (All) ==========
[2016.01.21 05:49:48 | 051,069,174 | ---- | M] ()(C:\Users\Uzivatel\Desktop\? Zamrzlé auto Víme jak na to!.mp4) -- C:\Users\Uzivatel\Desktop\▶ Zamrzlé auto Víme jak na to!.mp4
[2016.01.21 05:49:17 | 051,069,174 | ---- | C] ()(C:\Users\Uzivatel\Desktop\? Zamrzlé auto Víme jak na to!.mp4) -- C:\Users\Uzivatel\Desktop\▶ Zamrzlé auto Víme jak na to!.mp4
========== Alternate Data Streams ==========
@Alternate Data Stream - 134 bytes -> C:\ProgramData\TEMP:2CB9631F
@Alternate Data Stream - 129 bytes -> C:\ProgramData\TEMP:FD3CDBDF
@Alternate Data Stream - 103 bytes -> C:\ProgramData\TEMP:592D7272
< End of report >
[2013.01.23 10:59:00 | 000,528,896 | ---- | M] () -- \BackupShare\T4CAppsBackup\Bin\VCPCDownloader.exe
[2013.01.23 10:59:01 | 000,015,872 | ---- | M] () -- \BackupShare\T4CAppsBackup\Bin\VCPCDownloader.pdb
[2013.01.23 10:59:00 | 000,528,896 | ---- | M] () -- \BackupShare\T4CAppsBackup\CacheMonitor\VCPCDownloader.exe
[2013.01.23 10:59:01 | 000,015,872 | ---- | M] () -- \BackupShare\T4CAppsBackup\CacheMonitor\VCPCDownloader.pdb
[2013.01.23 10:59:00 | 000,528,896 | ---- | M] () -- \BackupShare\T4CAppsBackup\NedapCowLocator\VCPCDownloader.exe
[2013.01.23 10:59:01 | 000,015,872 | ---- | M] () -- \BackupShare\T4CAppsBackup\NedapCowLocator\VCPCDownloader.pdb
[2016.12.15 14:12:41 | 000,000,687 | ---- | M] () -- \BackupShare\T4CAppsBackup\T4C\Content\Loader.aspx
[2016.12.15 14:12:00 | 000,005,886 | ---- | M] () -- \BackupShare\T4CAppsBackup\T4C\Includes\Images\ajax_loader.gif
[2016.12.15 14:12:00 | 000,001,707 | ---- | M] () -- \BackupShare\T4CAppsBackup\T4C\Includes\Images\ajax_loader.png
[2016.12.15 14:12:00 | 000,005,886 | ---- | M] () -- \BackupShare\T4CAppsBackup\T4C\Includes\Images\ajax_loader_big.gif
[2016.12.15 14:12:01 | 000,001,707 | ---- | M] () -- \BackupShare\T4CAppsBackup\T4C\Includes\Images\ajax_loader_big.png
[2013.01.23 10:59:00 | 000,528,896 | ---- | M] () -- \BackupShare\T4CAppsBackup\VcpcSynch\VCPCDownloader.exe
[2013.01.23 10:59:01 | 000,015,872 | ---- | M] () -- \BackupShare\T4CAppsBackup\VcpcSynch\VCPCDownloader.pdb
[2013.09.04 09:33:24 | 000,086,016 | R--- | M] () -- \LELY FILES\Software\Milking and cooling software set 2016-45\Tooling\Ethernet Uploader\EthUploaderv1.03.exe
[2010.02.10 18:10:14 | 000,045,056 | ---- | M] () -- \Program Files (x86)\WinRAR\RarExtLoader.exe
[2001.01.16 07:55:36 | 000,053,248 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VS7DEBUG\COLOADER.DLL
[2001.01.16 05:22:34 | 000,002,560 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VS7DEBUG\COLOADER.TLB
[2011.03.08 09:43:28 | 000,013,734 | ---- | M] () -- \Program Files\GIMP 2\Python\Lib\unittest\loader.py
[2013.01.23 10:59:00 | 000,528,896 | ---- | M] () -- \Program Files\Lely\T4C\Bin\VCPCDownloader.exe
[2013.01.23 10:59:01 | 000,015,872 | ---- | M] () -- \Program Files\Lely\T4C\Bin\VCPCDownloader.pdb
[2013.03.23 00:56:39 | 000,011,264 | ---- | M] () -- \Program Files\Lely\T4C\Common\Tools\NewUpgrade\Prerequisite\LelyPrerequisiteDownloader.exe
[2017.08.01 16:29:44 | 000,006,144 | ---- | M] () -- \Program Files\Lely\T4C\Common\Tools\NewUpgrade\PrerequisiteDownloader\PrerequisiteDownloader.exe
[2017.08.01 16:29:44 | 000,013,824 | ---- | M] () -- \Program Files\Lely\T4C\Common\Tools\NewUpgrade\PrerequisiteDownloader\PrerequisiteDownloader.pdb
[2017.09.01 19:18:33 | 001,187,607 | ---- | M] () -- \Program Files\Lely\T4C\Common\Tools\NewUpgrade\PrerequisiteDownloader\Trace\PrerequisiteDownloader.trace.txt
[2017.08.30 00:25:08 | 010,485,765 | ---- | M] () -- \Program Files\Lely\T4C\Common\Tools\NewUpgrade\PrerequisiteDownloader\Trace\PrerequisiteDownloader.trace.txt.1
[2017.01.12 16:28:33 | 010,485,783 | ---- | M] () -- \Program Files\Lely\T4C\Common\Tools\NewUpgrade\PrerequisiteDownloader\Trace\PrerequisiteDownloader.trace.txt.10
[2017.08.04 22:09:19 | 010,485,767 | ---- | M] () -- \Program Files\Lely\T4C\Common\Tools\NewUpgrade\PrerequisiteDownloader\Trace\PrerequisiteDownloader.trace.txt.2
[2017.07.10 05:20:03 | 010,485,825 | ---- | M] () -- \Program Files\Lely\T4C\Common\Tools\NewUpgrade\PrerequisiteDownloader\Trace\PrerequisiteDownloader.trace.txt.3
[2017.06.14 18:59:53 | 010,485,789 | ---- | M] () -- \Program Files\Lely\T4C\Common\Tools\NewUpgrade\PrerequisiteDownloader\Trace\PrerequisiteDownloader.trace.txt.4
[2017.05.20 05:52:13 | 010,485,868 | ---- | M] () -- \Program Files\Lely\T4C\Common\Tools\NewUpgrade\PrerequisiteDownloader\Trace\PrerequisiteDownloader.trace.txt.5
[2017.04.24 17:04:27 | 010,485,868 | ---- | M] () -- \Program Files\Lely\T4C\Common\Tools\NewUpgrade\PrerequisiteDownloader\Trace\PrerequisiteDownloader.trace.txt.6
[2017.03.30 03:12:08 | 010,485,888 | ---- | M] () -- \Program Files\Lely\T4C\Common\Tools\NewUpgrade\PrerequisiteDownloader\Trace\PrerequisiteDownloader.trace.txt.7
[2017.03.04 11:43:16 | 010,485,854 | ---- | M] () -- \Program Files\Lely\T4C\Common\Tools\NewUpgrade\PrerequisiteDownloader\Trace\PrerequisiteDownloader.trace.txt.8
[2017.02.07 01:31:30 | 010,485,884 | ---- | M] () -- \Program Files\Lely\T4C\Common\Tools\NewUpgrade\PrerequisiteDownloader\Trace\PrerequisiteDownloader.trace.txt.9
[2016.12.15 14:12:41 | 000,000,687 | ---- | M] () -- \Program Files\Lely\T4C\Site\Content\Loader.aspx
[2016.12.15 14:12:00 | 000,005,886 | ---- | M] () -- \Program Files\Lely\T4C\Site\Includes\Images\ajax_loader.gif
[2016.12.15 14:12:00 | 000,001,707 | ---- | M] () -- \Program Files\Lely\T4C\Site\Includes\Images\ajax_loader.png
[2016.12.15 14:12:00 | 000,005,886 | ---- | M] () -- \Program Files\Lely\T4C\Site\Includes\Images\ajax_loader_big.gif
[2016.12.15 14:12:01 | 000,001,707 | ---- | M] () -- \Program Files\Lely\T4C\Site\Includes\Images\ajax_loader_big.png
[2017.08.01 16:29:44 | 000,006,144 | ---- | M] () -- \Program Files\Lely\T4C\Temp\SilentHotfixFiles\PrerequisiteDownloader\PrerequisiteDownloader.exe
[2017.08.01 16:29:44 | 000,013,824 | ---- | M] () -- \Program Files\Lely\T4C\Temp\SilentHotfixFiles\PrerequisiteDownloader\PrerequisiteDownloader.pdb
[2016.12.15 14:12:41 | 000,000,687 | ---- | M] () -- \Program Files\Lely\T4C\Temp\SilentUpgradeFiles\Apps\T4C\Content\Loader.aspx
[2016.12.15 14:12:00 | 000,005,886 | ---- | M] () -- \Program Files\Lely\T4C\Temp\SilentUpgradeFiles\Apps\T4C\Includes\Images\ajax_loader.gif
[2016.12.15 14:12:00 | 000,001,707 | ---- | M] () -- \Program Files\Lely\T4C\Temp\SilentUpgradeFiles\Apps\T4C\Includes\Images\ajax_loader.png
[2016.12.15 14:12:00 | 000,005,886 | ---- | M] () -- \Program Files\Lely\T4C\Temp\SilentUpgradeFiles\Apps\T4C\Includes\Images\ajax_loader_big.gif
[2016.12.15 14:12:01 | 000,001,707 | ---- | M] () -- \Program Files\Lely\T4C\Temp\SilentUpgradeFiles\Apps\T4C\Includes\Images\ajax_loader_big.png
[2017.05.22 18:42:10 | 000,528,896 | ---- | M] () -- \Program Files\Lely\T4C\Temp\SilentUpgradeFiles\Apps\VcpcDown\VCPCDownloader.exe
[2017.05.22 18:42:10 | 000,015,872 | ---- | M] () -- \Program Files\Lely\T4C\Temp\SilentUpgradeFiles\Apps\VcpcDown\VCPCDownloader.pdb
[2017.05.22 18:42:10 | 000,528,896 | ---- | M] () -- \Program Files\Lely\T4C\Temp\SilentUpgradeFiles\Flat\VCPCDownloader.exe
[2017.05.22 18:42:10 | 000,015,872 | ---- | M] () -- \Program Files\Lely\T4C\Temp\SilentUpgradeFiles\Flat\VCPCDownloader.pdb
[2017.05.22 18:28:12 | 000,006,144 | ---- | M] () -- \Program Files\Lely\T4C\Temp\SilentUpgradeFiles\PrerequisiteDownloader\PrerequisiteDownloader.exe
[2017.05.22 18:28:11 | 000,013,824 | ---- | M] () -- \Program Files\Lely\T4C\Temp\SilentUpgradeFiles\PrerequisiteDownloader\PrerequisiteDownloader.pdb
[2009.01.16 01:52:48 | 000,000,816 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v710\bin\registry\dotnetcli_loader.xml
[2009.01.27 17:19:56 | 000,007,680 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v710\bin\win32\dotnetcli_loader.dll
[2009.02.03 23:01:28 | 000,014,087 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v710\help\toolbox\javabuilder\MWArrayAPI\com\mathworks\toolbox\javabuilder\MWCtfClassLoaderSource.html
[2003.07.10 00:11:38 | 000,011,436 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v710\sys\perl\win32\lib\AutoLoader.pm
[2005.09.12 14:21:36 | 000,000,727 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v710\sys\perl\win32\lib\ByteLoader.pm
[2007.01.23 15:58:08 | 000,028,960 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v710\sys\perl\win32\lib\DynaLoader.pm
[2003.08.14 00:44:12 | 000,012,953 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v710\sys\perl\win32\lib\SelfLoader.pm
[2007.01.23 15:58:08 | 000,010,818 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v710\sys\perl\win32\lib\XSLoader.pm
[2007.01.23 15:58:30 | 000,000,000 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v710\sys\perl\win32\lib\auto\ByteLoader\ByteLoader.bs
[2007.01.23 15:58:28 | 000,028,782 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v710\sys\perl\win32\lib\auto\ByteLoader\ByteLoader.dll
[2007.01.23 15:58:28 | 000,000,817 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v710\sys\perl\win32\lib\auto\ByteLoader\ByteLoader.exp
[2007.01.23 15:58:28 | 000,002,212 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v710\sys\perl\win32\lib\auto\ByteLoader\ByteLoader.lib
[2003.07.10 00:11:48 | 000,001,324 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v710\sys\perl\win32\lib\Locale\Maketext\GutsLoader.pm
[2008.10.08 13:14:06 | 000,000,257 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v710\toolbox\local\classloader.txt
[2010.01.18 18:18:46 | 000,000,816 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v713\bin\registry\dotnetcli_loader.xml
[2010.01.18 22:46:28 | 000,024,576 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v713\bin\win32\dotnetcli_loader.dll
[2010.01.18 22:46:28 | 000,014,050 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v713\bin\win32\dotnetcli_loader.dll.csf
[2010.01.15 17:32:40 | 000,014,087 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v713\help\toolbox\javabuilder\MWArrayAPI\com\mathworks\toolbox\javabuilder\MWCtfClassLoaderSource.html
[2003.07.09 23:11:38 | 000,011,436 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v713\sys\perl\win32\lib\AutoLoader.pm
[2005.09.12 13:21:36 | 000,000,727 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v713\sys\perl\win32\lib\ByteLoader.pm
[2007.01.23 15:58:08 | 000,028,960 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v713\sys\perl\win32\lib\DynaLoader.pm
[2003.08.13 23:44:12 | 000,012,953 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v713\sys\perl\win32\lib\SelfLoader.pm
[2007.01.23 15:58:08 | 000,010,818 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v713\sys\perl\win32\lib\XSLoader.pm
[2007.01.23 15:58:30 | 000,000,000 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v713\sys\perl\win32\lib\auto\ByteLoader\ByteLoader.bs
[2007.01.23 15:58:28 | 000,028,782 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v713\sys\perl\win32\lib\auto\ByteLoader\ByteLoader.dll
[2007.01.23 15:58:28 | 000,000,817 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v713\sys\perl\win32\lib\auto\ByteLoader\ByteLoader.exp
[2007.01.23 15:58:28 | 000,002,212 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v713\sys\perl\win32\lib\auto\ByteLoader\ByteLoader.lib
[2003.07.09 23:11:48 | 000,001,324 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v713\sys\perl\win32\lib\Locale\Maketext\GutsLoader.pm
[2008.10.08 12:14:06 | 000,000,257 | ---- | M] () -- \Program Files\MATLAB\MATLAB Compiler Runtime\v713\toolbox\local\classloader.txt
[2013.02.13 03:10:58 | 000,000,103 | ---- | M] () -- \Program Files\Microsoft SQL Server\100\Setup Bootstrap\Log\20130213_020735\Datastore\_Extension_Agent_SqlResourceLoaderPath.xml
[2013.06.25 04:52:39 | 000,000,103 | ---- | M] () -- \Program Files\Microsoft SQL Server\100\Setup Bootstrap\Log\20130625_045020\T4C3\Datastore\_Extension_Agent_SqlResourceLoaderPath.xml
[2014.08.22 12:56:45 | 000,000,103 | ---- | M] () -- \Program Files\Microsoft SQL Server\100\Setup Bootstrap\Log\20140822_125421\T4C3\Datastore\_Extension_Agent_SqlResourceLoaderPath.xml
[2014.08.23 03:04:26 | 000,000,103 | ---- | M] () -- \Program Files\Microsoft SQL Server\100\Setup Bootstrap\Log\20140823_030119\T4C3\Datastore\_Extension_Agent_SqlResourceLoaderPath.xml
[2015.07.15 16:06:51 | 000,000,103 | ---- | M] () -- \Program Files\Microsoft SQL Server\100\Setup Bootstrap\Log\20150715_160239\T4C3\Datastore\_Extension_Agent_SqlResourceLoaderPath.xml
[2010.04.03 20:47:24 | 000,016,736 | ---- | M] () -- \Program Files\Microsoft SQL Server\100\Tools\Binn\SqlResourceLoader.dll
[2005.10.14 12:49:47 | 000,017,624 | ---- | M] () -- \Program Files\Microsoft SQL Server\90\Tools\Binn\SqlResourceLoader.dll
[2010.04.03 20:47:24 | 000,016,736 | ---- | M] () -- \Program Files\Microsoft SQL Server\MSSQL10_50.T4C3\MSSQL\Binn\SqlResourceLoader.dll
[2017.01.27 06:32:49 | 000,018,624 | ---- | M] () -- \Program Files\Mozilla Firefox\api-ms-win-core-libraryloader-l1-1-0.dll
[2017.07.25 18:08:29 | 000,019,152 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Microsoft\OneDrive\17.3.6943.0625\api-ms-win-core-libraryloader-l1-1-0.dll
[2017.09.01 05:33:05 | 000,008,432 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MOS3ZOK7\loader[1].gif
[2017.08.31 05:27:59 | 000,005,886 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R54IA97Y\ajax_loader_big[1].gif
[2017.08.30 16:19:26 | 000,008,581 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R54IA97Y\bx_loader[1].gif
[2015.03.12 11:47:42 | 000,072,638 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Skype\Apps\login\images\loader.gif
[2015.03.12 11:47:42 | 000,003,032 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Skype\Apps\login\images\loader.png
[2015.03.12 11:47:42 | 000,006,012 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Skype\Apps\login\images\normal\loader_15fps.gif
[2015.03.12 11:47:42 | 000,021,956 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Skype\Apps\login\images\normal\loader_30fps.gif
[2015.03.12 11:47:42 | 000,009,772 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Skype\Apps\login\images\retina\loader@2x.png
[2007.01.30 14:57:36 | 000,086,016 | R--- | M] () -- \Users\Uzivatel\Desktop\Lely files\DSS v01.20SR3\Tools 1.20SR3\EthernetUpLoader\EthUploaderv1.02.exe
[2016.02.27 16:07:43 | 000,020,706 | ---- | M] () -- \Users\Uzivatel\Desktop\TIP Co dělat při pravidelném výskytu „modré obrazovky smrti“ _ PC World.cz_soubory\lazyad-loader.js
[2011.03.07 06:38:13 | 000,002,041 | ---- | M] () -- \Users\Uzivatel\Desktop\WEB\Hubnoucí komando Tvarování postavy - ProZeny_cz_soubory\loader.js
[2017.01.01 10:13:14 | 000,002,059 | ---- | M] () -- \Users\Uzivatel\Downloads\Megamek 0.42\data\images\units\mechs\Patron I LoaderMech.png
[2017.01.01 10:13:14 | 000,002,059 | ---- | M] () -- \Users\Uzivatel\Downloads\Megamek 0.42\data\images\units\mechs\Patron LoaderMech.png
[2017.01.01 10:13:14 | 000,000,307 | ---- | M] () -- \Users\Uzivatel\Downloads\Megamek 0.42\data\images\units\unused\units_original\mechs\Patron I LoaderMech_original.gif
[2017.01.01 10:13:14 | 000,000,307 | ---- | M] () -- \Users\Uzivatel\Downloads\Megamek 0.42\data\images\units\unused\units_original\mechs\Patron LoaderMech_original.gif
[2016.06.05 17:05:52 | 000,000,307 | ---- | M] () -- \Users\Uzivatel\Downloads\Megamek\data\images\units\mechs\Patron I LoaderMech.gif
[2016.06.05 17:05:52 | 000,000,307 | ---- | M] () -- \Users\Uzivatel\Downloads\Megamek\data\images\units\mechs\Patron LoaderMech.gif
[2010.10.07 03:36:17 | 000,000,326 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\t4c\2b70a639\17f1791b\loader.aspx.baefa154.compiled
[1 \Windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\t4c\2b70a639\17f1791b\*.tmp files -> \Windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\t4c\2b70a639\17f1791b\*.tmp -> ]
[2014.05.16 09:37:01 | 000,000,321 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\t4c\c81c73ec\236a7478\loader.aspx.baefa154.compiled
[1 \Windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\t4c\c81c73ec\236a7478\*.tmp files -> \Windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\t4c\c81c73ec\236a7478\*.tmp -> ]
[2017.08.30 03:53:33 | 000,000,332 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\Temporary ASP.NET Files\t4c\c81c73ec\236a7478\loader.aspx.baefa154.compiled
[2017.09.01 19:18:33 | 000,058,048 | ---- | M] () -- \Windows\Prefetch\PREREQUISITEDOWNLOADER.EXE-FD51322D.pf
[2009.07.14 14:25:34 | 002,202,645 | R--- | M] () -- \Windows\Setup\SCRIPTS\Windows7Loader.exe
[2017.04.17 17:12:13 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2013.04.15 15:57:22 | 000,229,376 | ---- | M] () -- \Windows\System32\dsGinaLoader.dll
[2009.07.14 06:54:01 | 000,003,532 | ---- | M] () -- \Windows\System32\Tasks\Microsoft\Windows\WindowsColorSystem\Calibration Loader
[2017.08.10 03:02:04 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23864_cs-cz_359d3c007491ec2f.manifest
[2017.08.10 03:02:04 | 000,034,536 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23864_cs-cz_359d3c007491ec2f_winload.exe.mui_3bc5b827
[2017.08.10 03:02:05 | 000,030,440 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23864_cs-cz_359d3c007491ec2f_winresume.exe.mui_ff8b5358
[2017.08.10 03:01:48 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23864_none_5d818788e42f5262.manifest
[2017.08.10 03:01:48 | 000,534,600 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23864_none_5d818788e42f5262_winload.exe_75835076
[2017.08.10 03:01:48 | 000,470,704 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23864_none_5d818788e42f5262_winresume.exe_85cd1215
[2009.07.14 04:17:38 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009.07.14 04:17:38 | 000,017,472 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23_spldr.sys_98bd87a0
[2015.05.09 11:14:43 | 000,000,612 | ---- | M] () -- \Windows\winsxs\FileMaps\programdata_microsoft_diagnosis_asimovuploader_0413bca0c3dfdda4.cdf-ms
[2009.07.14 10:42:11 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86.manifest
[2015.01.16 08:24:33 | 000,002,777 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_cs-cz_35c794147472469a.manifest
[2015.04.27 21:41:46 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23040_cs-cz_35aecb80748565b9.manifest
[2015.05.25 20:50:50 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_cs-cz_35905c50749bec3a.manifest
[2015.07.15 05:32:43 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23126_cs-cz_35ca6efa746fc308.manifest
[2015.07.15 20:44:27 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23136_cs-cz_35bf9f0e7477def9.manifest
[2015.07.23 03:24:51 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23142_cs-cz_35b0cdfa7483958e.manifest
[2016.01.22 08:42:13 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23338_cs-cz_35c1a36e74760bf5.manifest
[2016.03.16 21:09:18 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23391_cs-cz_3579c1e074ad023a.manifest
[2016.03.18 01:01:03 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23392_cs-cz_357ac22a74ac1b91.manifest
[2016.09.02 17:44:19 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23539_cs-cz_35c2a78474751f9a.manifest
[2017.07.07 17:32:42 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23864_cs-cz_359d3c007491ec2f.manifest
[2010.11.20 05:02:40 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953.manifest
[2015.01.14 08:45:13 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.22923_none_5dabdf9ce40faccd.manifest
[2015.04.27 21:17:27 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23040_none_5d931708e422cbec.manifest
[2015.05.25 20:35:55 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23072_none_5d74a7d8e439526d.manifest
[2015.07.15 05:25:32 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23126_none_5daeba82e40d293b.manifest
[2015.07.15 20:16:39 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23136_none_5da3ea96e415452c.manifest
[2015.07.23 02:23:37 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23142_none_5d951982e420fbc1.manifest
[2016.01.22 08:39:54 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23338_none_5da5eef6e4137228.manifest
[2016.03.16 21:02:45 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23391_none_5d5e0d68e44a686d.manifest
[2016.03.18 00:51:44 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23392_none_5d5f0db2e44981c4.manifest
[2016.09.02 17:45:24 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23539_none_5da6f30ce41285cd.manifest
[2017.07.07 17:29:10 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23864_none_5d818788e42f5262.manifest
[2009.07.14 03:52:31 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2017.08.26 10:02:31 | 000,019,136 | ---- | M] () -- \Windows\winsxs\x86_avast.vc140.crt_fcc99ee6193ebbca_14.0.24210.0_none_9e58d6f8311e6fc8\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:45:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_0cba39e5da114d7c\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 03:48:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18229_none_0cb36eedda15c917\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.01.22 07:59:07 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.19135_none_0ca4852bda219c26\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:46:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_0d04f7bcf35dc79a\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.04.12 04:03:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22653_none_0d169feaf3511c1f\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.01.22 07:58:11 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23338_none_0d3124baf33c851c\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.03.16 20:23:40 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23391_none_0ce9432cf3737b61\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.03.18 00:24:26 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23392_none_0cea4376f37294b8\api-ms-win-core-libraryloader-l1-1-0.dll
[2017.04.17 17:12:13 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23775_none_0d02ebc4f35f9d77\api-ms-win-core-libraryloader-l1-1-0.dll
========== Files - Unicode (All) ==========
[2016.01.21 05:49:48 | 051,069,174 | ---- | M] ()(C:\Users\Uzivatel\Desktop\? Zamrzlé auto Víme jak na to!.mp4) -- C:\Users\Uzivatel\Desktop\▶ Zamrzlé auto Víme jak na to!.mp4
[2016.01.21 05:49:17 | 051,069,174 | ---- | C] ()(C:\Users\Uzivatel\Desktop\? Zamrzlé auto Víme jak na to!.mp4) -- C:\Users\Uzivatel\Desktop\▶ Zamrzlé auto Víme jak na to!.mp4
========== Alternate Data Streams ==========
@Alternate Data Stream - 134 bytes -> C:\ProgramData\TEMP:2CB9631F
@Alternate Data Stream - 129 bytes -> C:\ProgramData\TEMP:FD3CDBDF
@Alternate Data Stream - 103 bytes -> C:\ProgramData\TEMP:592D7272
< End of report >
Re: Podivné chování prohlížečů
OTL Extras logfile created on: 1.9.2017 19:27:20 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Uzivatel\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.17609)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
3,50 Gb Total Physical Memory | 1,56 Gb Available Physical Memory | 44,45% Memory free
7,00 Gb Paging File | 4,12 Gb Available in Paging File | 58,91% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 279,36 Gb Total Space | 124,62 Gb Free Space | 44,61% Space Free | Partition Type: NTFS
Drive E: | 100,00 Mb Total Space | 65,60 Mb Free Space | 65,60% Space Free | Partition Type: NTFS
Computer Name: UZIVATEL-PC | User Name: Uzivatel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
[HKEY_USERS\S-1-5-21-893007568-957827634-3976518877-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{000F5D5F-120F-47E8-A19D-2870BAF9AF33}" = rport=138 | protocol=17 | dir=out | app=system |
"{020E4C49-EE1F-48BC-A2F8-10E53057B9EA}" = lport=139 | protocol=6 | dir=in | app=system |
"{03CB69C8-2E1D-43AB-A422-EC6885708337}" = lport=137 | protocol=17 | dir=in | app=system |
"{05E04D34-94AF-43C6-9344-37BF2F32F9CC}" = lport=8004 | protocol=17 | dir=in | name=t4cndpactivity |
"{1CDB2156-4ED4-4889-9942-A00800E96BD5}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\google\chrome\application\chrome.exe |
"{2A3E80AE-BFDC-4EAD-82C1-691B19CF4191}" = lport=6969 | protocol=6 | dir=in | name=t4capiservice |
"{50980D9E-EA92-4647-A8F5-AAB4BB5F1B30}" = rport=445 | protocol=6 | dir=out | app=system |
"{62FC97F0-2004-47B4-B649-5040CE7C69E8}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{69304DE9-A101-49E6-B641-8A3545FF709A}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{72043052-247D-4D12-8EA1-95CC6F1E277F}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{7AE126C5-29DC-42F2-AD32-77A547330523}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{7FCCD934-EF2C-468A-9BBD-00F61B680DC9}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{8C5130D6-AE41-4DBC-929F-E320CBABCD49}" = lport=80 | protocol=6 | dir=in | name=httpport |
"{902A0527-8F83-4102-B8B1-95A4E97E7881}" = lport=443 | protocol=6 | dir=in | name=https port |
"{96F5186E-7B19-411A-BE3C-576823F22EDF}" = lport=445 | protocol=6 | dir=in | app=system |
"{9C38391C-BABD-4AB5-8D5C-DF052F1B1588}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{A3AFBF3C-35B0-4CFA-8C18-C544A036B43E}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{A51EE862-6A76-41CA-8A4F-D9E04B7FD10D}" = lport=80 | protocol=6 | dir=in | name=httpport |
"{BB7C1F41-6F1C-4720-98E1-DA324B27F79C}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{CC1252C5-6EC0-4234-BADE-0E55F1E3CF5B}" = lport=80 | protocol=6 | dir=in | name=httpport |
"{D1DF3B2B-F20E-4014-8812-54424BFCBDE2}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{E388FFC7-11E3-443E-B0DF-381C2BBACA75}" = lport=138 | protocol=17 | dir=in | app=system |
"{E7955E97-C925-4154-AA1E-B0CE182F1E01}" = rport=139 | protocol=6 | dir=out | app=system |
"{EA8F691A-A390-493D-8AE9-EE274FE504A7}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{F983BE7D-62CB-4EC6-A4B2-946BE250CFA7}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{F99F7669-4187-4BCA-B294-AD461AF4B6E4}" = rport=137 | protocol=17 | dir=out | app=system |
"{FB8D4121-8810-4963-B916-041456AC0509}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0821ECCE-089D-46C3-AE25-289B1A5E4ADE}" = dir=in | app=c:\program files\hry.cz\imperial island 3 expansion\imperialisland3.exe |
"{09976C20-D7B1-4B5E-AFDD-BD068A0CFB48}" = dir=in | app=c:\program files\hry.cz\legendary mahjong\legendary mahjong.wrp.exe |
"{0BDF6411-B203-47D9-849B-F467CA0D1594}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{1BA0D429-A9EF-4258-8F82-8578F56902E7}" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"{2B213170-CEAD-4712-9383-002C33162674}" = dir=in | app=c:\program files\hry.cz\12 labours of hercules ii the cretan bull\12laboursofhercules2.exe |
"{33F1F0C5-10A8-4058-8110-C8CD1BB21A8D}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{3C6C6F64-EE05-4E6B-B8F3-4FCAB9370840}" = protocol=17 | dir=in | app=c:\program files\teamviewer\teamviewer.exe |
"{4BFBB98E-2D7F-4B05-ABD5-4C791268D201}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{58D2A16A-1224-44BD-BDDB-167F7DC2E26A}" = dir=in | app=c:\program files\alawar.cs\asian riddles 2\asian riddles 2.exe |
"{5BAC0523-EE55-4B41-AA06-A5F4BA049AF9}" = protocol=6 | dir=in | app=c:\program files\teamviewer\teamviewer.exe |
"{7085E1FE-1815-46E3-863E-DC1D37FF19E8}" = dir=in | app=c:\program files\hry.cz\legendary mahjong\legendary mahjong.exe |
"{72EA72EB-C4B7-4BAE-A659-0616D56855A4}" = dir=in | app=c:\program files\superhry.cz\12 labours of hercules 4 mother nature\12laboursofhercules4.wrp.exe |
"{753FD1B5-66C4-424C-8381-F0D42EE6CA9E}" = dir=in | app=c:\program files\hry.cz\imperial island 3 expansion\imperialisland3.wrp.exe |
"{78F659F7-4539-4527-8236-B2893107EF7E}" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"{7BAE27A0-9188-4EE5-AF26-84C3BE7F122E}" = dir=in | app=c:\program files\hry.cz\12 labours of hercules iii girl power\12laboursofhercules3.exe |
"{7EA53DA5-D5DE-42F2-AAEC-2228743404D6}" = protocol=17 | dir=in | app=c:\program files\lely\t4c\bin\t4cnservice.exe |
"{82338136-7CEC-417C-A02A-2606A67A7844}" = dir=in | app=c:\program files\hry.cz\cavequest\cavequest.exe |
"{8300E690-8A56-445F-94B3-1F7EE0CFBF85}" = dir=in | app=c:\program files\hry.cz\button tales\buttontales.wrp.exe |
"{9A76657C-92B3-4014-AA37-3F9B042C45CB}" = protocol=6 | dir=in | app=c:\program files\lely\t4c\bin\t4cnservice.exe |
"{A866E197-73E9-4621-B41F-DD9ED3D31FC8}" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"{A900CC07-5742-42BF-807F-214863D6AEBB}" = dir=in | app=c:\program files\alawar.cs\panopticon path of reflections\panopticon.exe |
"{AF7C644B-A7BF-4315-A20E-C8B8956A6B96}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{B0CFFFF9-5BC5-4621-A141-1413438B7CE5}" = dir=in | app=c:\program files\hry.cz\button tales\buttontales.exe |
"{BCE18513-12DF-473C-A48A-AC120A370595}" = dir=in | app=c:\program files\hry.cz\farm frenzy hurricane season\farmfrenzyhurricaneseason.exe |
"{C18EFF31-C2CF-4F31-BB73-6ABB3B3543AF}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{D2DB53FD-792C-4E66-97F0-5EFE693AA55D}" = protocol=6 | dir=in | app=c:\program files\teamviewer\teamviewer_service.exe |
"{DB3733FF-4F26-448B-A887-A17547006B09}" = dir=in | app=c:\program files\superhry.cz\12 labours of hercules 4 mother nature\12laboursofhercules4.exe |
"{E4711264-FBB9-45D8-B76F-FFDF7AD6118A}" = dir=in | app=c:\program files\alawar.cs\new york mysteries secrets of the mafia collectors edition\newyorkmysteries_secretsofthemafia_ce.exe |
"{EEEB3D32-59F8-4872-918A-E00E8EB4DEBB}" = dir=in | app=c:\program files\hry.cz\beyond the legend mysteries of olympus\mysteriesofolympus.exe |
"{F7CD355A-DC7F-4339-A467-0D6D4F7C9E91}" = protocol=17 | dir=in | app=c:\program files\teamviewer\teamviewer_service.exe |
"{FC1827FF-696A-41CC-8AD8-F3524597A69A}" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"{FF00A6CD-7425-43B6-A00F-3FE58356A67E}" = dir=in | app=c:\program files\alawar.cs\barn yarn collectors edition\barn yarn.exe |
"TCP Query User{3A3305DC-5C37-4B2A-A50E-3E4D1C286F81}C:\program files\java\jre1.8.0_25\launch4j-tmp\megamek.exe" = protocol=6 | dir=in | app=c:\program files\java\jre1.8.0_25\launch4j-tmp\megamek.exe |
"TCP Query User{63848ACA-B906-40AB-AF3B-3D36DDC01605}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"TCP Query User{F31198D2-1713-4212-AE8C-EAD683A3529A}C:\program files\java\jre1.8.0_31\launch4j-tmp\megamek.exe" = protocol=6 | dir=in | app=c:\program files\java\jre1.8.0_31\launch4j-tmp\megamek.exe |
"UDP Query User{26DF7CF8-CAF1-4718-800E-477589DD8AAF}C:\program files\java\jre1.8.0_31\launch4j-tmp\megamek.exe" = protocol=17 | dir=in | app=c:\program files\java\jre1.8.0_31\launch4j-tmp\megamek.exe |
"UDP Query User{53D25384-ABBD-42EC-AC9F-8385D24F30E9}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"UDP Query User{E7A6B48A-D046-46B1-AFB4-00E18616A7AF}C:\program files\java\jre1.8.0_25\launch4j-tmp\megamek.exe" = protocol=17 | dir=in | app=c:\program files\java\jre1.8.0_25\launch4j-tmp\megamek.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{045A6CA3-8D07-44F8-AF99-7BA0798F42D8}" = T4C
"{082BDF7B-4810-4599-BF0D-E3AC44EC8524}" = Microsoft ASP.NET 2.0 AJAX Extensions 1.0
"{0B265E3D-17BD-3B47-D87A-FAC2B8E18124}" = ATI Problem Report Wizard
"{0CFE7DA9-4618-4C5C-BB06-6623275BE510}" = Microsoft SQL Server System CLR Types
"{1896CB18-36FE-4AA6-8F9C-F42C087941CD}" = FormApps Signing Extension
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1FF713E1-FE5E-4AD0-9C8C-B2E877846B45}" = Catalyst Control Center - Branding
"{22154f09-719a-4619-bb71-5b3356999fbf}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727
"{23170F69-40C1-2701-0920-000001000000}" = 7-Zip 9.20
"{26A24AE4-039D-4CA4-87B4-2F83218031F0}" = Java 8 Update 31
"{2750B389-A2D2-4953-99CA-27C1F2A8E6FD}" = Microsoft SQL Server 2005 Tools Express Edition
"{2A842F3F-CE6D-3DFD-9ECB-9CC3C5150A67}" = Microsoft .NET Framework 4.7
"{2E060268-4175-201F-EABD-B91FC552DCA4}" = CCC Help Japanese
"{2F73A7B2-E50E-39A6-9ABC-EF89E4C62E36}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727
"{306D0BDC-4E4D-D95A-F067-5C2FD0A41055}" = Catalyst Control Center Graphics Full New
"{32652FCF-AC67-688C-0FB8-3AD5839ACFB7}" = CCC Help Russian
"{3C67F5DC-F3BA-241E-D4EB-58D935822B74}" = CCC Help Hungarian
"{4112625F-2D38-49EF-924F-48511BC5CD34}" = SQL Server 2008 R2 SP2 Database Engine Services
"{413B1AC7-E076-B765-C6BF-8780AE6124CB}" = ATI AVIVO Codecs
"{450F9FEF-1B68-4D0C-B32E-8042C97B7AD6}" = Brother HL-2035
"{47BE41E6-2F0F-4D17-9C2D-3850FFD9D405}" = Microsoft SQL Server VSS Writer
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4C9D82EB-9001-4E59-8F64-0BEEE5F4A30A}" = SQL Server 2008 R2 SP2 Database Engine Shared
"{4D8B25F4-855F-4D39-9486-4DCC3AAB3436}_is1" = RoboTask Lite 5.8
"{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}" = Microsoft SQL Server Setup Support Files (English)
"{569FA061-07B7-3992-358E-3A58582B2E6D}" = ccc-core-static
"{5B363E1D-8C36-4458-BAE4-D5081999E094}" = Browser Configuration Utility
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{68A35043-C55A-4237-88C9-37EE1C63ED71}" = Microsoft Visual J# 2.0 Redistributable Package
"{6FE7D13B-88D4-4870-B5D7-54D9E7D04661}" = CCC Help Portuguese
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{71D2E342-1B58-4391-94A1-E0AC78E40A52}_is1" = Foerster-Technik COM-Server
"{7670D32F-DAE6-4E49-8C8B-B3F08B5B1686}" = Microsoft SQL Server Native Client
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{78DFDC88-FA40-408F-8397-1D7908A6DA21}" = Adobe AIR
"{7B6DB690-4552-9EDC-40F3-4F73B2B98EB1}" = AMD Wireless Display v3.0
"{7ED169D4-5053-4166-93DF-53B12AE6C539}" = Energy Saver Advance B9.0730.1
"{7FC3076B-750E-24BE-F7FF-26266F9256CF}" = CCC Help Italian
"{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1" = PDF24 Creator 7.9.0
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{86206386-FAF7-A27A-66E9-7840DEA68848}" = CCC Help Danish
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8B217953-6EF2-E6F2-4742-C6CA98A9C294}" = CCC Help Dutch
"{8DABF4DE-DC94-4436-90D4-0D39DCB42ABE}" = Microsoft SQL Server 2008 R2 RsFx Driver
"{8E0BF061-4331-4459-BB6C-C20F237B53DB}" = Microsoft SQL Server 2008 R2 Native Client
"{90110405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0405-0000-0000000FF1CE}" = Sada Compatibility Pack pro systém Office 2007
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029" = Microsoft .NET Framework 4.7 (čeština)
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.7
"{93998800-1608-403F-9A51-420A77D23C25}" = Sql Server Customer Experience Improvement Program
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95A4C317-5EF8-7E59-BC82-5DFCB18EE17A}" = CCC Help English
"{9783B07B-362F-9552-84AD-058DB078086F}" = CCC Help Greek
"{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}" = Visual Studio 2012 x86 Redistributables
"{9913042F-A0CC-38F9-B34C-2551CCEF4085}" = Microsoft .NET Framework 4.7 (CSY)
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1" = Revo Uninstaller 2.0.1
"{A2CABB42-0936-44CD-B3E0-8A62B5303E70}" = CCC Help German
"{A39E4995-2D56-ABE5-D90B-2B3A685F7CE2}" = CCC Help Czech
"{A4FEEED3-51B4-4BBA-ACB2-8820EED93C52}" = MATLAB(R) Compiler Runtime 7.10
"{A513E1BC-2F10-9661-3105-2674F11841AA}" = ccc-utility
"{A71F05F5-547F-DD24-2E03-E757F8DF833A}" = CCC Help Chinese Standard
"{A72D8248-4E4D-63CF-BF39-E041AF380012}" = Catalyst Control Center Graphics Full Existing
"{A80FA752-C491-4ED9-ABF0-4278563160B2}" = 32 Bit HP CIO Components Installer
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{ABB785A8-BCBB-D1C0-03B5-3F4E32083E07}" = CCC Help Korean
"{AC76BA86-7AD7-1029-7B44-AA1000000001}" = Adobe Reader X (10.1.9) - Czech
"{ACFE0185-378C-4EAD-A91A-92C6FDB1EA55}" = Starnet TV testovací verze
"{AD145AD6-8697-463B-AB76-B48C21242917}" = MATLAB(R) Compiler Runtime 7.13
"{AEAE3EDB-AF9F-0BE8-F7E1-C5D6D6D74DB9}" = CCC Help Spanish
"{B6CF045D-51E5-6E4B-7C62-FD402ACB38FB}" = Catalyst Control Center Graphics Previews Common
"{B8367F2A-34C0-BC18-922A-96B4FDA40FA0}" = CCC Help Thai
"{B86C045F-2922-ECBD-4066-173B77820992}" = CCC Help Polish
"{B8E9F8A1-9F4D-43D5-ABD6-1DF067FAA469}" = SQL Server 2008 R2 SP2 Database Engine Services
"{BF9BF038-FE03-429D-9B26-2FA0FD756052}" = Microsoft SQL Server Browser
"{C2260C4B-DD89-4E26-A945-762982A4900E}" = TeamViewer 6 Host (MSI Wrapper)
"{CACEA8C8-3D38-4F51-953D-1E6FC3346FEF}" = SQL Server 2008 R2 SP2 Common Files
"{CEBA2DEC-E9CD-D82A-7280-988D8430C39D}" = CCC Help Norwegian
"{CF06C093-A1D1-5CAB-DF87-B890377970D0}" = Catalyst Control Center Localization All
"{D1C46FAA-3378-A0B1-18D2-F52618E5517E}" = CCC Help Finnish
"{D3405B2E-79A5-3EAF-3E8C-20E8CD64F2D1}" = Catalyst Control Center Core Implementation
"{D3EF1442-F45D-AF2E-EE90-F168F83BD5D7}" = CCC Help French
"{D441BD04-E548-4F8E-97A4-1B66135BAAA8}" = Microsoft SQL Server 2008 Setup Support Files
"{D6E5C6D5-E96F-C90E-0BF5-94F6E4ED3B6A}" = Catalyst Control Center Graphics Previews Vista
"{DE7D695C-2EC7-AFDF-F786-6E938DE83175}" = AMD Catalyst Install Manager
"{E003E6CE-1249-44FF-852A-4F3BE535E6AB}" = Microsoft Security Client
"{E031338C-839D-4EDD-9537-99B653C39D81}" = Autodesk MapGuide(R) Viewer ActiveX Control Release 6.5
"{ED8F6478-7A65-DB3B-ECC9-0635E5FE5479}" = MoomlAgent
"{EFECC55D-7B0A-4D05-8487-CC2FD7C618A3}" = Microsoft SQL Server 2008 R2 Setup (English)
"{F021CC0C-21C3-4038-AA4A-6E3CBC669CE8}" = SQL Server 2008 R2 SP2 Database Engine Shared
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F241631E-ACF3-DE56-901C-0BC16D2423CE}" = CCC Help Turkish
"{F25BE225-4A79-941A-A257-1BB37968F773}" = Catalyst Control Center HydraVision Full
"{F5451D00-B448-4E9A-82DC-1929F4F1910D}" = Nitro Reader 3
"{F8A2DD2D-581D-372A-71CD-1339CFE86EC8}" = Catalyst Control Center Graphics Light
"{FC835376-FF3B-4CAA-83E0-2148B3FB7C98}" = SQL Server 2008 R2 SP2 Common Files
"{FDB30193-FDA0-3DAA-ACCA-A75EEFE53607}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727
"{FED3F92F-4D03-82BE-E3D2-D9BD7E942000}" = CCC Help Swedish
"{FEE4FA12-5675-4DF8-97D5-274C65D59021}" = SCRLDService
"{FFF22903-7FDC-0E9C-7667-1B673026112A}" = CCC Help Chinese Traditional
"7-Zip" = 7-Zip 9.22beta
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 26 ActiveX
"Adobe Flash Player NPAPI" = Adobe Flash Player 26 NPAPI
"CCleaner" = CCleaner
"ESET Online Scanner" = ESET Online Scanner v3
"Free Registry Defrag_is1" = Free Registry Defrag
"GIMP-2_is1" = GIMP 2.8.6
"Google Chrome" = Google Chrome
"Juniper Network Connect 7.3.0" = Juniper Networks Network Connect 7.3.0
"Juniper_Setup_Client Activex Control" = Juniper Networks, Inc. Setup Client Activex Control
"Macro Recorder_is1" = Macro Recorder 5.8.0
"merge_is1" = Merge Version 2.1
"Microsoft Report Viewer Redistributable 2008 (KB971118)" = Microsoft Report Viewer Redistributable 2005
"Microsoft Security Client" = Microsoft Security Essentials
"Microsoft SQL Server 10" = Microsoft SQL Server 2008 R2
"Microsoft SQL Server 2005" = Microsoft SQL Server 2005
"Microsoft SQL Server 2008 R2" = Microsoft SQL Server 2008 R2
"Microsoft Visual J# 2.0 Redistributable Package" = Microsoft Visual J# 2.0 Redistributable Package
"MoomlAgent" = MoomlAgent
"Mozilla Firefox 55.0.3 (x86 cs)" = Mozilla Firefox 55.0.3 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Registr skotu_is1" = Registr skotu 1.60
"SCRLDService 1.0.1.61" = SCRLDService
"Sweet Home 3D_is1" = Sweet Home 3D version 4.6
"TeamViewer" = TeamViewer 10 Host
"Totalcmd" = Total Commander (Remove or Repair)
"VLC media player" = VLC media player
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-893007568-957827634-3976518877-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"12 úkolů pro Herkula 2: Býk z Kréty" = 12 úkolů pro Herkula 2: Býk z Kréty
"12 úkolů pro Herkula 4: Matka příroda" = 12 úkolů pro Herkula 4: Matka příroda
"12 úkolů pro Herkula III: Dívčí síla" = 12 úkolů pro Herkula III: Dívčí síla
"Around the World in 80 Days" = Around the World in 80 Days
"Asijské hádanky 2" = Asijské hádanky 2
"Barn Yarn. Sběratelská edice" = Barn Yarn. Sběratelská edice
"Brickshooter Egypt " = Brickshooter Egypt
"Cesta alchymie" = Cesta alchymie
"Císařský ostrov 2: Pátrání po nové zemi" = Císařský ostrov 2: Pátrání po nové zemi
"Císařský ostrov 3: Expanze" = Císařský ostrov 3: Expanze
"Drápky a pírka" = Drápky a pírka
"Drápky a pírka 2" = Drápky a pírka 2
"Farm Frenzy: Období hurikánů" = Farm Frenzy: Období hurikánů
"Floria" = Floria
"Invaze: Ztraceni v čase" = Invaze: Ztraceni v čase
"Jeskynní výprava" = Jeskynní výprava
"Knoflíkové bajky" = Knoflíkové bajky
"Legendary Mahjong" = Legendary Mahjong
"Moai 2: Cesta do jiného světa" = Moai 2: Cesta do jiného světa
"OneDriveSetup.exe" = Microsoft OneDrive
"Osada: Kolos" = Osada: Kolos
"Panoptikon: Svět za zrcadlem" = Panoptikon: Svět za zrcadlem
"Pozadí legend: Tajemství Olympu" = Pozadí legend: Tajemství Olympu
"UnityWebPlayer" = Unity Web Player
"Vánoční dobrodružství: Cukrovinková smršť" = Vánoční dobrodružství: Cukrovinková smršť
"Veselé drahokamy 4" = Veselé drahokamy 4
"Veselý šéfkuchař 2" = Veselý šéfkuchař 2
"Záhadné cesty: Výlet do Indie" = Záhadné cesty: Výlet do Indie
"Záhady New Yorku: Tajemství Mafie. Sběratelská edice" = Záhady New Yorku: Tajemství Mafie. Sběratelská edice
"Zasněné hory: Uzamčená magie" = Zasněné hory: Uzamčená magie
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 1.9.2017 11:45:37 | Computer Name = Uzivatel-PC | Source = T4CGenerate | ID = 0
Description = Assembly: T4CServices (3.7.0.17) Culture Info: cs-CZ Current Time: 1.9.2017
17:45:37 Error on processing SendPeriodicInfo service. System.Net.WebException: Požadavek
se nezdařil se stavem HTTP 404: Not Found. v System.Web.Services.Protocols.SoapHttpClientProtocol.ReadResponse(SoapClientMessage
message, WebResponse response, Stream responseStream, Boolean asyncCall) v System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String
methodName, Object[] parameters) v T4CServices.SendInfo.SendInfo.GetEventSources(String
CusMovexCode) v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\Web References\SendInfo\Reference.cs:řádek
221 v T4CServices.SendInfo.SendPeriodicInfo.ProcessShortInfo() v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendPeriodicInfo.cs:řádek
144 v T4CServices.SendInfo.SendPeriodicInfo.SendShortInfo() v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendPeriodicInfo.cs:řádek
44 v T4CServices.SendInfo.SendPeriodicInfo.SendPeriodicInfo_ServiceProcess()
v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendPeriodicInfo.cs:řádek
39 v T4CServices.GeneratorService._timer_Elapsed(Object sender, ElapsedEventArgs
e) v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\Base\GeneratorService.cs:řádek
200
Error - 1.9.2017 12:15:37 | Computer Name = Uzivatel-PC | Source = T4CGenerate | ID = 0
Description = Assembly: T4CServices (3.7.0.17) Culture Info: cs-CZ Current Time: 1.9.2017
18:15:37 SendQueryResult-> System.Net.WebException: Požadavek se nezdařil se stavem
HTTP 404: Not Found. v System.Web.Services.Protocols.SoapHttpClientProtocol.ReadResponse(SoapClientMessage
message, WebResponse response, Stream responseStream, Boolean asyncCall) v System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String
methodName, Object[] parameters) v T4CServices.SendInfo.SendInfo.GetDbQuery(String
CusMovexCode, String& Db, Int32& QueryId) v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\Web
References\SendInfo\Reference.cs:řádek 311 v T4CServices.SendInfo.SendQueryResult.Do()
v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendQueryResult.cs:řádek
41 v T4CServices.SendInfo.SendQueryResult.Run() v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendQueryResult.cs:řádek
17
Error - 1.9.2017 12:15:37 | Computer Name = Uzivatel-PC | Source = T4CGenerate | ID = 0
Description = Assembly: T4CServices (3.7.0.17) Culture Info: cs-CZ Current Time: 1.9.2017
18:15:37 Error on processing SendPeriodicInfo service. System.Net.WebException: Požadavek
se nezdařil se stavem HTTP 404: Not Found. v System.Web.Services.Protocols.SoapHttpClientProtocol.ReadResponse(SoapClientMessage
message, WebResponse response, Stream responseStream, Boolean asyncCall) v System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String
methodName, Object[] parameters) v T4CServices.SendInfo.SendInfo.GetEventSources(String
CusMovexCode) v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\Web References\SendInfo\Reference.cs:řádek
221 v T4CServices.SendInfo.SendPeriodicInfo.ProcessShortInfo() v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendPeriodicInfo.cs:řádek
144 v T4CServices.SendInfo.SendPeriodicInfo.SendShortInfo() v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendPeriodicInfo.cs:řádek
44 v T4CServices.SendInfo.SendPeriodicInfo.SendPeriodicInfo_ServiceProcess()
v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendPeriodicInfo.cs:řádek
39 v T4CServices.GeneratorService._timer_Elapsed(Object sender, ElapsedEventArgs
e) v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\Base\GeneratorService.cs:řádek
200
Error - 1.9.2017 12:45:38 | Computer Name = Uzivatel-PC | Source = T4CGenerate | ID = 0
Description = Assembly: T4CServices (3.7.0.17) Culture Info: cs-CZ Current Time: 1.9.2017
18:45:38 SendQueryResult-> System.Net.WebException: Požadavek se nezdařil se stavem
HTTP 404: Not Found. v System.Web.Services.Protocols.SoapHttpClientProtocol.ReadResponse(SoapClientMessage
message, WebResponse response, Stream responseStream, Boolean asyncCall) v System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String
methodName, Object[] parameters) v T4CServices.SendInfo.SendInfo.GetDbQuery(String
CusMovexCode, String& Db, Int32& QueryId) v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\Web
References\SendInfo\Reference.cs:řádek 311 v T4CServices.SendInfo.SendQueryResult.Do()
v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendQueryResult.cs:řádek
41 v T4CServices.SendInfo.SendQueryResult.Run() v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendQueryResult.cs:řádek
17
Error - 1.9.2017 12:45:38 | Computer Name = Uzivatel-PC | Source = T4CGenerate | ID = 0
Description = Assembly: T4CServices (3.7.0.17) Culture Info: cs-CZ Current Time: 1.9.2017
18:45:38 Error on processing SendPeriodicInfo service. System.Net.WebException: Požadavek
se nezdařil se stavem HTTP 404: Not Found. v System.Web.Services.Protocols.SoapHttpClientProtocol.ReadResponse(SoapClientMessage
message, WebResponse response, Stream responseStream, Boolean asyncCall) v System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String
methodName, Object[] parameters) v T4CServices.SendInfo.SendInfo.GetEventSources(String
CusMovexCode) v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\Web References\SendInfo\Reference.cs:řádek
221 v T4CServices.SendInfo.SendPeriodicInfo.ProcessShortInfo() v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendPeriodicInfo.cs:řádek
144 v T4CServices.SendInfo.SendPeriodicInfo.SendShortInfo() v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendPeriodicInfo.cs:řádek
44 v T4CServices.SendInfo.SendPeriodicInfo.SendPeriodicInfo_ServiceProcess()
v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendPeriodicInfo.cs:řádek
39 v T4CServices.GeneratorService._timer_Elapsed(Object sender, ElapsedEventArgs
e) v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\Base\GeneratorService.cs:řádek
200
Error - 1.9.2017 13:15:38 | Computer Name = Uzivatel-PC | Source = T4CGenerate | ID = 0
Description = Assembly: T4CServices (3.7.0.17) Culture Info: cs-CZ Current Time: 1.9.2017
19:15:38 SendQueryResult-> System.Net.WebException: Požadavek se nezdařil se stavem
HTTP 404: Not Found. v System.Web.Services.Protocols.SoapHttpClientProtocol.ReadResponse(SoapClientMessage
message, WebResponse response, Stream responseStream, Boolean asyncCall) v System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String
methodName, Object[] parameters) v T4CServices.SendInfo.SendInfo.GetDbQuery(String
CusMovexCode, String& Db, Int32& QueryId) v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\Web
References\SendInfo\Reference.cs:řádek 311 v T4CServices.SendInfo.SendQueryResult.Do()
v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendQueryResult.cs:řádek
41 v T4CServices.SendInfo.SendQueryResult.Run() v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendQueryResult.cs:řádek
17
Error - 1.9.2017 13:15:39 | Computer Name = Uzivatel-PC | Source = T4CGenerate | ID = 0
Description = Assembly: T4CServices (3.7.0.17) Culture Info: cs-CZ Current Time: 1.9.2017
19:15:39 Error on processing SendPeriodicInfo service. System.Net.WebException: Požadavek
se nezdařil se stavem HTTP 404: Not Found. v System.Web.Services.Protocols.SoapHttpClientProtocol.ReadResponse(SoapClientMessage
message, WebResponse response, Stream responseStream, Boolean asyncCall) v System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String
methodName, Object[] parameters) v T4CServices.SendInfo.SendInfo.GetEventSources(String
CusMovexCode) v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\Web References\SendInfo\Reference.cs:řádek
221 v T4CServices.SendInfo.SendPeriodicInfo.ProcessShortInfo() v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendPeriodicInfo.cs:řádek
144 v T4CServices.SendInfo.SendPeriodicInfo.SendShortInfo() v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendPeriodicInfo.cs:řádek
44 v T4CServices.SendInfo.SendPeriodicInfo.SendPeriodicInfo_ServiceProcess()
v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendPeriodicInfo.cs:řádek
39 v T4CServices.GeneratorService._timer_Elapsed(Object sender, ElapsedEventArgs
e) v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\Base\GeneratorService.cs:řádek
200
Error - 1.9.2017 13:45:39 | Computer Name = Uzivatel-PC | Source = T4CGenerate | ID = 0
Description = Assembly: T4CServices (3.7.0.17) Culture Info: cs-CZ Current Time: 1.9.2017
19:45:39 SendQueryResult-> System.Net.WebException: Požadavek se nezdařil se stavem
HTTP 404: Not Found. v System.Web.Services.Protocols.SoapHttpClientProtocol.ReadResponse(SoapClientMessage
message, WebResponse response, Stream responseStream, Boolean asyncCall) v System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String
methodName, Object[] parameters) v T4CServices.SendInfo.SendInfo.GetDbQuery(String
CusMovexCode, String& Db, Int32& QueryId) v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\Web
References\SendInfo\Reference.cs:řádek 311 v T4CServices.SendInfo.SendQueryResult.Do()
v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendQueryResult.cs:řádek
41 v T4CServices.SendInfo.SendQueryResult.Run() v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendQueryResult.cs:řádek
17
Error - 1.9.2017 13:45:39 | Computer Name = Uzivatel-PC | Source = T4CGenerate | ID = 0
Description = Assembly: T4CServices (3.7.0.17) Culture Info: cs-CZ Current Time: 1.9.2017
19:45:39 Error on processing SendPeriodicInfo service. System.Net.WebException: Požadavek
se nezdařil se stavem HTTP 404: Not Found. v System.Web.Services.Protocols.SoapHttpClientProtocol.ReadResponse(SoapClientMessage
message, WebResponse response, Stream responseStream, Boolean asyncCall) v System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String
methodName, Object[] parameters) v T4CServices.SendInfo.SendInfo.GetEventSources(String
CusMovexCode) v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\Web References\SendInfo\Reference.cs:řádek
221 v T4CServices.SendInfo.SendPeriodicInfo.ProcessShortInfo() v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendPeriodicInfo.cs:řádek
144 v T4CServices.SendInfo.SendPeriodicInfo.SendShortInfo() v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendPeriodicInfo.cs:řádek
44 v T4CServices.SendInfo.SendPeriodicInfo.SendPeriodicInfo_ServiceProcess()
v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendPeriodicInfo.cs:řádek
39 v T4CServices.GeneratorService._timer_Elapsed(Object sender, ElapsedEventArgs
e) v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\Base\GeneratorService.cs:řádek
200
Error - 1.9.2017 13:48:28 | Computer Name = Uzivatel-PC | Source = T4CGenerate | ID = 0
Description = Assembly: T4CServices (3.7.0.17) Culture Info: cs-CZ Current Time: 1.9.2017
19:48:28 Error on processing TrackActivity service. System.Net.WebException: Požadavek
se nezdařil se stavem HTTP 404: Not Found. v System.Web.Services.Protocols.SoapHttpClientProtocol.ReadResponse(SoapClientMessage
message, WebResponse response, Stream responseStream, Boolean asyncCall) v System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String
methodName, Object[] parameters) v T4CServices.SendInfo.SendInfo.GetTrackActivityCount(String
licenseKey) v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\Web References\SendInfo\Reference.cs:řádek
132 v T4CServices.TrackActivitySend.TrackActivitySender.CallWebService() v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\TrackActivitySend\TrackActivity.cs:řádek
100 v T4CServices.TrackActivitySend.TrackActivitySender.TrackActivitySender_ServiceProcess()
v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\TrackActivitySend\TrackActivity.cs:řádek
29 v T4CServices.GeneratorService._timer_Elapsed(Object sender, ElapsedEventArgs
e) v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\Base\GeneratorService.cs:řádek
200
[ System Events ]
Error - 29.8.2017 19:06:16 | Computer Name = Uzivatel-PC | Source = Service Control Manager | ID = 7034
Description = Služba T4C DLM byla neočekávaně ukončena. Tento stav nastal již 2krát.
Error - 29.8.2017 19:06:23 | Computer Name = Uzivatel-PC | Source = Service Control Manager | ID = 7034
Description = Služba T4C Calm Synchroniser byla neočekávaně ukončena. Tento stav
nastal již 2krát.
Error - 29.8.2017 19:06:29 | Computer Name = Uzivatel-PC | Source = Service Control Manager | ID = 7034
Description = Služba T4C Mobile API Service byla neočekávaně ukončena. Tento stav
nastal již 2krát.
Error - 29.8.2017 19:06:34 | Computer Name = Uzivatel-PC | Source = Service Control Manager | ID = 7034
Description = Služba T4C Device Synchroniser byla neočekávaně ukončena. Tento stav
nastal již 2krát.
Error - 30.8.2017 15:07:07 | Computer Name = Uzivatel-PC | Source = DCOM | ID = 10009
Description =
Error - 30.8.2017 16:06:12 | Computer Name = Uzivatel-PC | Source = DCOM | ID = 10009
Description =
Error - 31.8.2017 12:19:03 | Computer Name = Uzivatel-PC | Source = Microsoft Antimalware | ID = 2001
Description = %%860 zjistil chybu při pokusu o aktualizaci podpisů. Nová verze podpisu:
Předchozí verze podpisu: 1.251.240.0 Zdroj aktualizace: %%859 Fáze aktualizace: %%854
Zdrojová
cesta: http://www.microsoft.com Typ podpisu: %%800 Typ aktualizace: %%803 Uživatel:
NT AUTHORITY\SYSTEM Aktuální verze modulu: Předchozí verze modulu: 1.1.14104.0 Kód
chyby: 0x80070643 Popis chyby: Při instalaci došlo k závažné chybě.
Error - 31.8.2017 12:19:45 | Computer Name = Uzivatel-PC | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Instalace se nezdařila: Instalování následující aktualizace se nezdařilo
z důvodu chyby (0x80070643): Aktualizace definic pro Microsoft Security Essentials
- KB2310138 (definice 1.251.331.0).
Error - 31.8.2017 15:05:24 | Computer Name = Uzivatel-PC | Source = DCOM | ID = 10009
Description =
Error - 31.8.2017 16:04:29 | Computer Name = Uzivatel-PC | Source = DCOM | ID = 10009
Description =
< End of report >
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Uzivatel\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.17609)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
3,50 Gb Total Physical Memory | 1,56 Gb Available Physical Memory | 44,45% Memory free
7,00 Gb Paging File | 4,12 Gb Available in Paging File | 58,91% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 279,36 Gb Total Space | 124,62 Gb Free Space | 44,61% Space Free | Partition Type: NTFS
Drive E: | 100,00 Mb Total Space | 65,60 Mb Free Space | 65,60% Space Free | Partition Type: NTFS
Computer Name: UZIVATEL-PC | User Name: Uzivatel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
[HKEY_USERS\S-1-5-21-893007568-957827634-3976518877-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{000F5D5F-120F-47E8-A19D-2870BAF9AF33}" = rport=138 | protocol=17 | dir=out | app=system |
"{020E4C49-EE1F-48BC-A2F8-10E53057B9EA}" = lport=139 | protocol=6 | dir=in | app=system |
"{03CB69C8-2E1D-43AB-A422-EC6885708337}" = lport=137 | protocol=17 | dir=in | app=system |
"{05E04D34-94AF-43C6-9344-37BF2F32F9CC}" = lport=8004 | protocol=17 | dir=in | name=t4cndpactivity |
"{1CDB2156-4ED4-4889-9942-A00800E96BD5}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\google\chrome\application\chrome.exe |
"{2A3E80AE-BFDC-4EAD-82C1-691B19CF4191}" = lport=6969 | protocol=6 | dir=in | name=t4capiservice |
"{50980D9E-EA92-4647-A8F5-AAB4BB5F1B30}" = rport=445 | protocol=6 | dir=out | app=system |
"{62FC97F0-2004-47B4-B649-5040CE7C69E8}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{69304DE9-A101-49E6-B641-8A3545FF709A}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{72043052-247D-4D12-8EA1-95CC6F1E277F}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{7AE126C5-29DC-42F2-AD32-77A547330523}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{7FCCD934-EF2C-468A-9BBD-00F61B680DC9}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{8C5130D6-AE41-4DBC-929F-E320CBABCD49}" = lport=80 | protocol=6 | dir=in | name=httpport |
"{902A0527-8F83-4102-B8B1-95A4E97E7881}" = lport=443 | protocol=6 | dir=in | name=https port |
"{96F5186E-7B19-411A-BE3C-576823F22EDF}" = lport=445 | protocol=6 | dir=in | app=system |
"{9C38391C-BABD-4AB5-8D5C-DF052F1B1588}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{A3AFBF3C-35B0-4CFA-8C18-C544A036B43E}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{A51EE862-6A76-41CA-8A4F-D9E04B7FD10D}" = lport=80 | protocol=6 | dir=in | name=httpport |
"{BB7C1F41-6F1C-4720-98E1-DA324B27F79C}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{CC1252C5-6EC0-4234-BADE-0E55F1E3CF5B}" = lport=80 | protocol=6 | dir=in | name=httpport |
"{D1DF3B2B-F20E-4014-8812-54424BFCBDE2}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{E388FFC7-11E3-443E-B0DF-381C2BBACA75}" = lport=138 | protocol=17 | dir=in | app=system |
"{E7955E97-C925-4154-AA1E-B0CE182F1E01}" = rport=139 | protocol=6 | dir=out | app=system |
"{EA8F691A-A390-493D-8AE9-EE274FE504A7}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{F983BE7D-62CB-4EC6-A4B2-946BE250CFA7}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{F99F7669-4187-4BCA-B294-AD461AF4B6E4}" = rport=137 | protocol=17 | dir=out | app=system |
"{FB8D4121-8810-4963-B916-041456AC0509}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0821ECCE-089D-46C3-AE25-289B1A5E4ADE}" = dir=in | app=c:\program files\hry.cz\imperial island 3 expansion\imperialisland3.exe |
"{09976C20-D7B1-4B5E-AFDD-BD068A0CFB48}" = dir=in | app=c:\program files\hry.cz\legendary mahjong\legendary mahjong.wrp.exe |
"{0BDF6411-B203-47D9-849B-F467CA0D1594}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{1BA0D429-A9EF-4258-8F82-8578F56902E7}" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"{2B213170-CEAD-4712-9383-002C33162674}" = dir=in | app=c:\program files\hry.cz\12 labours of hercules ii the cretan bull\12laboursofhercules2.exe |
"{33F1F0C5-10A8-4058-8110-C8CD1BB21A8D}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{3C6C6F64-EE05-4E6B-B8F3-4FCAB9370840}" = protocol=17 | dir=in | app=c:\program files\teamviewer\teamviewer.exe |
"{4BFBB98E-2D7F-4B05-ABD5-4C791268D201}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{58D2A16A-1224-44BD-BDDB-167F7DC2E26A}" = dir=in | app=c:\program files\alawar.cs\asian riddles 2\asian riddles 2.exe |
"{5BAC0523-EE55-4B41-AA06-A5F4BA049AF9}" = protocol=6 | dir=in | app=c:\program files\teamviewer\teamviewer.exe |
"{7085E1FE-1815-46E3-863E-DC1D37FF19E8}" = dir=in | app=c:\program files\hry.cz\legendary mahjong\legendary mahjong.exe |
"{72EA72EB-C4B7-4BAE-A659-0616D56855A4}" = dir=in | app=c:\program files\superhry.cz\12 labours of hercules 4 mother nature\12laboursofhercules4.wrp.exe |
"{753FD1B5-66C4-424C-8381-F0D42EE6CA9E}" = dir=in | app=c:\program files\hry.cz\imperial island 3 expansion\imperialisland3.wrp.exe |
"{78F659F7-4539-4527-8236-B2893107EF7E}" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"{7BAE27A0-9188-4EE5-AF26-84C3BE7F122E}" = dir=in | app=c:\program files\hry.cz\12 labours of hercules iii girl power\12laboursofhercules3.exe |
"{7EA53DA5-D5DE-42F2-AAEC-2228743404D6}" = protocol=17 | dir=in | app=c:\program files\lely\t4c\bin\t4cnservice.exe |
"{82338136-7CEC-417C-A02A-2606A67A7844}" = dir=in | app=c:\program files\hry.cz\cavequest\cavequest.exe |
"{8300E690-8A56-445F-94B3-1F7EE0CFBF85}" = dir=in | app=c:\program files\hry.cz\button tales\buttontales.wrp.exe |
"{9A76657C-92B3-4014-AA37-3F9B042C45CB}" = protocol=6 | dir=in | app=c:\program files\lely\t4c\bin\t4cnservice.exe |
"{A866E197-73E9-4621-B41F-DD9ED3D31FC8}" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"{A900CC07-5742-42BF-807F-214863D6AEBB}" = dir=in | app=c:\program files\alawar.cs\panopticon path of reflections\panopticon.exe |
"{AF7C644B-A7BF-4315-A20E-C8B8956A6B96}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{B0CFFFF9-5BC5-4621-A141-1413438B7CE5}" = dir=in | app=c:\program files\hry.cz\button tales\buttontales.exe |
"{BCE18513-12DF-473C-A48A-AC120A370595}" = dir=in | app=c:\program files\hry.cz\farm frenzy hurricane season\farmfrenzyhurricaneseason.exe |
"{C18EFF31-C2CF-4F31-BB73-6ABB3B3543AF}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{D2DB53FD-792C-4E66-97F0-5EFE693AA55D}" = protocol=6 | dir=in | app=c:\program files\teamviewer\teamviewer_service.exe |
"{DB3733FF-4F26-448B-A887-A17547006B09}" = dir=in | app=c:\program files\superhry.cz\12 labours of hercules 4 mother nature\12laboursofhercules4.exe |
"{E4711264-FBB9-45D8-B76F-FFDF7AD6118A}" = dir=in | app=c:\program files\alawar.cs\new york mysteries secrets of the mafia collectors edition\newyorkmysteries_secretsofthemafia_ce.exe |
"{EEEB3D32-59F8-4872-918A-E00E8EB4DEBB}" = dir=in | app=c:\program files\hry.cz\beyond the legend mysteries of olympus\mysteriesofolympus.exe |
"{F7CD355A-DC7F-4339-A467-0D6D4F7C9E91}" = protocol=17 | dir=in | app=c:\program files\teamviewer\teamviewer_service.exe |
"{FC1827FF-696A-41CC-8AD8-F3524597A69A}" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"{FF00A6CD-7425-43B6-A00F-3FE58356A67E}" = dir=in | app=c:\program files\alawar.cs\barn yarn collectors edition\barn yarn.exe |
"TCP Query User{3A3305DC-5C37-4B2A-A50E-3E4D1C286F81}C:\program files\java\jre1.8.0_25\launch4j-tmp\megamek.exe" = protocol=6 | dir=in | app=c:\program files\java\jre1.8.0_25\launch4j-tmp\megamek.exe |
"TCP Query User{63848ACA-B906-40AB-AF3B-3D36DDC01605}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"TCP Query User{F31198D2-1713-4212-AE8C-EAD683A3529A}C:\program files\java\jre1.8.0_31\launch4j-tmp\megamek.exe" = protocol=6 | dir=in | app=c:\program files\java\jre1.8.0_31\launch4j-tmp\megamek.exe |
"UDP Query User{26DF7CF8-CAF1-4718-800E-477589DD8AAF}C:\program files\java\jre1.8.0_31\launch4j-tmp\megamek.exe" = protocol=17 | dir=in | app=c:\program files\java\jre1.8.0_31\launch4j-tmp\megamek.exe |
"UDP Query User{53D25384-ABBD-42EC-AC9F-8385D24F30E9}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"UDP Query User{E7A6B48A-D046-46B1-AFB4-00E18616A7AF}C:\program files\java\jre1.8.0_25\launch4j-tmp\megamek.exe" = protocol=17 | dir=in | app=c:\program files\java\jre1.8.0_25\launch4j-tmp\megamek.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{045A6CA3-8D07-44F8-AF99-7BA0798F42D8}" = T4C
"{082BDF7B-4810-4599-BF0D-E3AC44EC8524}" = Microsoft ASP.NET 2.0 AJAX Extensions 1.0
"{0B265E3D-17BD-3B47-D87A-FAC2B8E18124}" = ATI Problem Report Wizard
"{0CFE7DA9-4618-4C5C-BB06-6623275BE510}" = Microsoft SQL Server System CLR Types
"{1896CB18-36FE-4AA6-8F9C-F42C087941CD}" = FormApps Signing Extension
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1FF713E1-FE5E-4AD0-9C8C-B2E877846B45}" = Catalyst Control Center - Branding
"{22154f09-719a-4619-bb71-5b3356999fbf}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727
"{23170F69-40C1-2701-0920-000001000000}" = 7-Zip 9.20
"{26A24AE4-039D-4CA4-87B4-2F83218031F0}" = Java 8 Update 31
"{2750B389-A2D2-4953-99CA-27C1F2A8E6FD}" = Microsoft SQL Server 2005 Tools Express Edition
"{2A842F3F-CE6D-3DFD-9ECB-9CC3C5150A67}" = Microsoft .NET Framework 4.7
"{2E060268-4175-201F-EABD-B91FC552DCA4}" = CCC Help Japanese
"{2F73A7B2-E50E-39A6-9ABC-EF89E4C62E36}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727
"{306D0BDC-4E4D-D95A-F067-5C2FD0A41055}" = Catalyst Control Center Graphics Full New
"{32652FCF-AC67-688C-0FB8-3AD5839ACFB7}" = CCC Help Russian
"{3C67F5DC-F3BA-241E-D4EB-58D935822B74}" = CCC Help Hungarian
"{4112625F-2D38-49EF-924F-48511BC5CD34}" = SQL Server 2008 R2 SP2 Database Engine Services
"{413B1AC7-E076-B765-C6BF-8780AE6124CB}" = ATI AVIVO Codecs
"{450F9FEF-1B68-4D0C-B32E-8042C97B7AD6}" = Brother HL-2035
"{47BE41E6-2F0F-4D17-9C2D-3850FFD9D405}" = Microsoft SQL Server VSS Writer
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4C9D82EB-9001-4E59-8F64-0BEEE5F4A30A}" = SQL Server 2008 R2 SP2 Database Engine Shared
"{4D8B25F4-855F-4D39-9486-4DCC3AAB3436}_is1" = RoboTask Lite 5.8
"{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}" = Microsoft SQL Server Setup Support Files (English)
"{569FA061-07B7-3992-358E-3A58582B2E6D}" = ccc-core-static
"{5B363E1D-8C36-4458-BAE4-D5081999E094}" = Browser Configuration Utility
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{68A35043-C55A-4237-88C9-37EE1C63ED71}" = Microsoft Visual J# 2.0 Redistributable Package
"{6FE7D13B-88D4-4870-B5D7-54D9E7D04661}" = CCC Help Portuguese
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{71D2E342-1B58-4391-94A1-E0AC78E40A52}_is1" = Foerster-Technik COM-Server
"{7670D32F-DAE6-4E49-8C8B-B3F08B5B1686}" = Microsoft SQL Server Native Client
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{78DFDC88-FA40-408F-8397-1D7908A6DA21}" = Adobe AIR
"{7B6DB690-4552-9EDC-40F3-4F73B2B98EB1}" = AMD Wireless Display v3.0
"{7ED169D4-5053-4166-93DF-53B12AE6C539}" = Energy Saver Advance B9.0730.1
"{7FC3076B-750E-24BE-F7FF-26266F9256CF}" = CCC Help Italian
"{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1" = PDF24 Creator 7.9.0
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{86206386-FAF7-A27A-66E9-7840DEA68848}" = CCC Help Danish
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8B217953-6EF2-E6F2-4742-C6CA98A9C294}" = CCC Help Dutch
"{8DABF4DE-DC94-4436-90D4-0D39DCB42ABE}" = Microsoft SQL Server 2008 R2 RsFx Driver
"{8E0BF061-4331-4459-BB6C-C20F237B53DB}" = Microsoft SQL Server 2008 R2 Native Client
"{90110405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0405-0000-0000000FF1CE}" = Sada Compatibility Pack pro systém Office 2007
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029" = Microsoft .NET Framework 4.7 (čeština)
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.7
"{93998800-1608-403F-9A51-420A77D23C25}" = Sql Server Customer Experience Improvement Program
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95A4C317-5EF8-7E59-BC82-5DFCB18EE17A}" = CCC Help English
"{9783B07B-362F-9552-84AD-058DB078086F}" = CCC Help Greek
"{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}" = Visual Studio 2012 x86 Redistributables
"{9913042F-A0CC-38F9-B34C-2551CCEF4085}" = Microsoft .NET Framework 4.7 (CSY)
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1" = Revo Uninstaller 2.0.1
"{A2CABB42-0936-44CD-B3E0-8A62B5303E70}" = CCC Help German
"{A39E4995-2D56-ABE5-D90B-2B3A685F7CE2}" = CCC Help Czech
"{A4FEEED3-51B4-4BBA-ACB2-8820EED93C52}" = MATLAB(R) Compiler Runtime 7.10
"{A513E1BC-2F10-9661-3105-2674F11841AA}" = ccc-utility
"{A71F05F5-547F-DD24-2E03-E757F8DF833A}" = CCC Help Chinese Standard
"{A72D8248-4E4D-63CF-BF39-E041AF380012}" = Catalyst Control Center Graphics Full Existing
"{A80FA752-C491-4ED9-ABF0-4278563160B2}" = 32 Bit HP CIO Components Installer
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{ABB785A8-BCBB-D1C0-03B5-3F4E32083E07}" = CCC Help Korean
"{AC76BA86-7AD7-1029-7B44-AA1000000001}" = Adobe Reader X (10.1.9) - Czech
"{ACFE0185-378C-4EAD-A91A-92C6FDB1EA55}" = Starnet TV testovací verze
"{AD145AD6-8697-463B-AB76-B48C21242917}" = MATLAB(R) Compiler Runtime 7.13
"{AEAE3EDB-AF9F-0BE8-F7E1-C5D6D6D74DB9}" = CCC Help Spanish
"{B6CF045D-51E5-6E4B-7C62-FD402ACB38FB}" = Catalyst Control Center Graphics Previews Common
"{B8367F2A-34C0-BC18-922A-96B4FDA40FA0}" = CCC Help Thai
"{B86C045F-2922-ECBD-4066-173B77820992}" = CCC Help Polish
"{B8E9F8A1-9F4D-43D5-ABD6-1DF067FAA469}" = SQL Server 2008 R2 SP2 Database Engine Services
"{BF9BF038-FE03-429D-9B26-2FA0FD756052}" = Microsoft SQL Server Browser
"{C2260C4B-DD89-4E26-A945-762982A4900E}" = TeamViewer 6 Host (MSI Wrapper)
"{CACEA8C8-3D38-4F51-953D-1E6FC3346FEF}" = SQL Server 2008 R2 SP2 Common Files
"{CEBA2DEC-E9CD-D82A-7280-988D8430C39D}" = CCC Help Norwegian
"{CF06C093-A1D1-5CAB-DF87-B890377970D0}" = Catalyst Control Center Localization All
"{D1C46FAA-3378-A0B1-18D2-F52618E5517E}" = CCC Help Finnish
"{D3405B2E-79A5-3EAF-3E8C-20E8CD64F2D1}" = Catalyst Control Center Core Implementation
"{D3EF1442-F45D-AF2E-EE90-F168F83BD5D7}" = CCC Help French
"{D441BD04-E548-4F8E-97A4-1B66135BAAA8}" = Microsoft SQL Server 2008 Setup Support Files
"{D6E5C6D5-E96F-C90E-0BF5-94F6E4ED3B6A}" = Catalyst Control Center Graphics Previews Vista
"{DE7D695C-2EC7-AFDF-F786-6E938DE83175}" = AMD Catalyst Install Manager
"{E003E6CE-1249-44FF-852A-4F3BE535E6AB}" = Microsoft Security Client
"{E031338C-839D-4EDD-9537-99B653C39D81}" = Autodesk MapGuide(R) Viewer ActiveX Control Release 6.5
"{ED8F6478-7A65-DB3B-ECC9-0635E5FE5479}" = MoomlAgent
"{EFECC55D-7B0A-4D05-8487-CC2FD7C618A3}" = Microsoft SQL Server 2008 R2 Setup (English)
"{F021CC0C-21C3-4038-AA4A-6E3CBC669CE8}" = SQL Server 2008 R2 SP2 Database Engine Shared
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F241631E-ACF3-DE56-901C-0BC16D2423CE}" = CCC Help Turkish
"{F25BE225-4A79-941A-A257-1BB37968F773}" = Catalyst Control Center HydraVision Full
"{F5451D00-B448-4E9A-82DC-1929F4F1910D}" = Nitro Reader 3
"{F8A2DD2D-581D-372A-71CD-1339CFE86EC8}" = Catalyst Control Center Graphics Light
"{FC835376-FF3B-4CAA-83E0-2148B3FB7C98}" = SQL Server 2008 R2 SP2 Common Files
"{FDB30193-FDA0-3DAA-ACCA-A75EEFE53607}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727
"{FED3F92F-4D03-82BE-E3D2-D9BD7E942000}" = CCC Help Swedish
"{FEE4FA12-5675-4DF8-97D5-274C65D59021}" = SCRLDService
"{FFF22903-7FDC-0E9C-7667-1B673026112A}" = CCC Help Chinese Traditional
"7-Zip" = 7-Zip 9.22beta
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 26 ActiveX
"Adobe Flash Player NPAPI" = Adobe Flash Player 26 NPAPI
"CCleaner" = CCleaner
"ESET Online Scanner" = ESET Online Scanner v3
"Free Registry Defrag_is1" = Free Registry Defrag
"GIMP-2_is1" = GIMP 2.8.6
"Google Chrome" = Google Chrome
"Juniper Network Connect 7.3.0" = Juniper Networks Network Connect 7.3.0
"Juniper_Setup_Client Activex Control" = Juniper Networks, Inc. Setup Client Activex Control
"Macro Recorder_is1" = Macro Recorder 5.8.0
"merge_is1" = Merge Version 2.1
"Microsoft Report Viewer Redistributable 2008 (KB971118)" = Microsoft Report Viewer Redistributable 2005
"Microsoft Security Client" = Microsoft Security Essentials
"Microsoft SQL Server 10" = Microsoft SQL Server 2008 R2
"Microsoft SQL Server 2005" = Microsoft SQL Server 2005
"Microsoft SQL Server 2008 R2" = Microsoft SQL Server 2008 R2
"Microsoft Visual J# 2.0 Redistributable Package" = Microsoft Visual J# 2.0 Redistributable Package
"MoomlAgent" = MoomlAgent
"Mozilla Firefox 55.0.3 (x86 cs)" = Mozilla Firefox 55.0.3 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Registr skotu_is1" = Registr skotu 1.60
"SCRLDService 1.0.1.61" = SCRLDService
"Sweet Home 3D_is1" = Sweet Home 3D version 4.6
"TeamViewer" = TeamViewer 10 Host
"Totalcmd" = Total Commander (Remove or Repair)
"VLC media player" = VLC media player
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-893007568-957827634-3976518877-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"12 úkolů pro Herkula 2: Býk z Kréty" = 12 úkolů pro Herkula 2: Býk z Kréty
"12 úkolů pro Herkula 4: Matka příroda" = 12 úkolů pro Herkula 4: Matka příroda
"12 úkolů pro Herkula III: Dívčí síla" = 12 úkolů pro Herkula III: Dívčí síla
"Around the World in 80 Days" = Around the World in 80 Days
"Asijské hádanky 2" = Asijské hádanky 2
"Barn Yarn. Sběratelská edice" = Barn Yarn. Sběratelská edice
"Brickshooter Egypt " = Brickshooter Egypt
"Cesta alchymie" = Cesta alchymie
"Císařský ostrov 2: Pátrání po nové zemi" = Císařský ostrov 2: Pátrání po nové zemi
"Císařský ostrov 3: Expanze" = Císařský ostrov 3: Expanze
"Drápky a pírka" = Drápky a pírka
"Drápky a pírka 2" = Drápky a pírka 2
"Farm Frenzy: Období hurikánů" = Farm Frenzy: Období hurikánů
"Floria" = Floria
"Invaze: Ztraceni v čase" = Invaze: Ztraceni v čase
"Jeskynní výprava" = Jeskynní výprava
"Knoflíkové bajky" = Knoflíkové bajky
"Legendary Mahjong" = Legendary Mahjong
"Moai 2: Cesta do jiného světa" = Moai 2: Cesta do jiného světa
"OneDriveSetup.exe" = Microsoft OneDrive
"Osada: Kolos" = Osada: Kolos
"Panoptikon: Svět za zrcadlem" = Panoptikon: Svět za zrcadlem
"Pozadí legend: Tajemství Olympu" = Pozadí legend: Tajemství Olympu
"UnityWebPlayer" = Unity Web Player
"Vánoční dobrodružství: Cukrovinková smršť" = Vánoční dobrodružství: Cukrovinková smršť
"Veselé drahokamy 4" = Veselé drahokamy 4
"Veselý šéfkuchař 2" = Veselý šéfkuchař 2
"Záhadné cesty: Výlet do Indie" = Záhadné cesty: Výlet do Indie
"Záhady New Yorku: Tajemství Mafie. Sběratelská edice" = Záhady New Yorku: Tajemství Mafie. Sběratelská edice
"Zasněné hory: Uzamčená magie" = Zasněné hory: Uzamčená magie
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 1.9.2017 11:45:37 | Computer Name = Uzivatel-PC | Source = T4CGenerate | ID = 0
Description = Assembly: T4CServices (3.7.0.17) Culture Info: cs-CZ Current Time: 1.9.2017
17:45:37 Error on processing SendPeriodicInfo service. System.Net.WebException: Požadavek
se nezdařil se stavem HTTP 404: Not Found. v System.Web.Services.Protocols.SoapHttpClientProtocol.ReadResponse(SoapClientMessage
message, WebResponse response, Stream responseStream, Boolean asyncCall) v System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String
methodName, Object[] parameters) v T4CServices.SendInfo.SendInfo.GetEventSources(String
CusMovexCode) v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\Web References\SendInfo\Reference.cs:řádek
221 v T4CServices.SendInfo.SendPeriodicInfo.ProcessShortInfo() v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendPeriodicInfo.cs:řádek
144 v T4CServices.SendInfo.SendPeriodicInfo.SendShortInfo() v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendPeriodicInfo.cs:řádek
44 v T4CServices.SendInfo.SendPeriodicInfo.SendPeriodicInfo_ServiceProcess()
v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendPeriodicInfo.cs:řádek
39 v T4CServices.GeneratorService._timer_Elapsed(Object sender, ElapsedEventArgs
e) v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\Base\GeneratorService.cs:řádek
200
Error - 1.9.2017 12:15:37 | Computer Name = Uzivatel-PC | Source = T4CGenerate | ID = 0
Description = Assembly: T4CServices (3.7.0.17) Culture Info: cs-CZ Current Time: 1.9.2017
18:15:37 SendQueryResult-> System.Net.WebException: Požadavek se nezdařil se stavem
HTTP 404: Not Found. v System.Web.Services.Protocols.SoapHttpClientProtocol.ReadResponse(SoapClientMessage
message, WebResponse response, Stream responseStream, Boolean asyncCall) v System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String
methodName, Object[] parameters) v T4CServices.SendInfo.SendInfo.GetDbQuery(String
CusMovexCode, String& Db, Int32& QueryId) v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\Web
References\SendInfo\Reference.cs:řádek 311 v T4CServices.SendInfo.SendQueryResult.Do()
v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendQueryResult.cs:řádek
41 v T4CServices.SendInfo.SendQueryResult.Run() v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendQueryResult.cs:řádek
17
Error - 1.9.2017 12:15:37 | Computer Name = Uzivatel-PC | Source = T4CGenerate | ID = 0
Description = Assembly: T4CServices (3.7.0.17) Culture Info: cs-CZ Current Time: 1.9.2017
18:15:37 Error on processing SendPeriodicInfo service. System.Net.WebException: Požadavek
se nezdařil se stavem HTTP 404: Not Found. v System.Web.Services.Protocols.SoapHttpClientProtocol.ReadResponse(SoapClientMessage
message, WebResponse response, Stream responseStream, Boolean asyncCall) v System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String
methodName, Object[] parameters) v T4CServices.SendInfo.SendInfo.GetEventSources(String
CusMovexCode) v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\Web References\SendInfo\Reference.cs:řádek
221 v T4CServices.SendInfo.SendPeriodicInfo.ProcessShortInfo() v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendPeriodicInfo.cs:řádek
144 v T4CServices.SendInfo.SendPeriodicInfo.SendShortInfo() v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendPeriodicInfo.cs:řádek
44 v T4CServices.SendInfo.SendPeriodicInfo.SendPeriodicInfo_ServiceProcess()
v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendPeriodicInfo.cs:řádek
39 v T4CServices.GeneratorService._timer_Elapsed(Object sender, ElapsedEventArgs
e) v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\Base\GeneratorService.cs:řádek
200
Error - 1.9.2017 12:45:38 | Computer Name = Uzivatel-PC | Source = T4CGenerate | ID = 0
Description = Assembly: T4CServices (3.7.0.17) Culture Info: cs-CZ Current Time: 1.9.2017
18:45:38 SendQueryResult-> System.Net.WebException: Požadavek se nezdařil se stavem
HTTP 404: Not Found. v System.Web.Services.Protocols.SoapHttpClientProtocol.ReadResponse(SoapClientMessage
message, WebResponse response, Stream responseStream, Boolean asyncCall) v System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String
methodName, Object[] parameters) v T4CServices.SendInfo.SendInfo.GetDbQuery(String
CusMovexCode, String& Db, Int32& QueryId) v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\Web
References\SendInfo\Reference.cs:řádek 311 v T4CServices.SendInfo.SendQueryResult.Do()
v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendQueryResult.cs:řádek
41 v T4CServices.SendInfo.SendQueryResult.Run() v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendQueryResult.cs:řádek
17
Error - 1.9.2017 12:45:38 | Computer Name = Uzivatel-PC | Source = T4CGenerate | ID = 0
Description = Assembly: T4CServices (3.7.0.17) Culture Info: cs-CZ Current Time: 1.9.2017
18:45:38 Error on processing SendPeriodicInfo service. System.Net.WebException: Požadavek
se nezdařil se stavem HTTP 404: Not Found. v System.Web.Services.Protocols.SoapHttpClientProtocol.ReadResponse(SoapClientMessage
message, WebResponse response, Stream responseStream, Boolean asyncCall) v System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String
methodName, Object[] parameters) v T4CServices.SendInfo.SendInfo.GetEventSources(String
CusMovexCode) v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\Web References\SendInfo\Reference.cs:řádek
221 v T4CServices.SendInfo.SendPeriodicInfo.ProcessShortInfo() v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendPeriodicInfo.cs:řádek
144 v T4CServices.SendInfo.SendPeriodicInfo.SendShortInfo() v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendPeriodicInfo.cs:řádek
44 v T4CServices.SendInfo.SendPeriodicInfo.SendPeriodicInfo_ServiceProcess()
v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendPeriodicInfo.cs:řádek
39 v T4CServices.GeneratorService._timer_Elapsed(Object sender, ElapsedEventArgs
e) v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\Base\GeneratorService.cs:řádek
200
Error - 1.9.2017 13:15:38 | Computer Name = Uzivatel-PC | Source = T4CGenerate | ID = 0
Description = Assembly: T4CServices (3.7.0.17) Culture Info: cs-CZ Current Time: 1.9.2017
19:15:38 SendQueryResult-> System.Net.WebException: Požadavek se nezdařil se stavem
HTTP 404: Not Found. v System.Web.Services.Protocols.SoapHttpClientProtocol.ReadResponse(SoapClientMessage
message, WebResponse response, Stream responseStream, Boolean asyncCall) v System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String
methodName, Object[] parameters) v T4CServices.SendInfo.SendInfo.GetDbQuery(String
CusMovexCode, String& Db, Int32& QueryId) v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\Web
References\SendInfo\Reference.cs:řádek 311 v T4CServices.SendInfo.SendQueryResult.Do()
v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendQueryResult.cs:řádek
41 v T4CServices.SendInfo.SendQueryResult.Run() v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendQueryResult.cs:řádek
17
Error - 1.9.2017 13:15:39 | Computer Name = Uzivatel-PC | Source = T4CGenerate | ID = 0
Description = Assembly: T4CServices (3.7.0.17) Culture Info: cs-CZ Current Time: 1.9.2017
19:15:39 Error on processing SendPeriodicInfo service. System.Net.WebException: Požadavek
se nezdařil se stavem HTTP 404: Not Found. v System.Web.Services.Protocols.SoapHttpClientProtocol.ReadResponse(SoapClientMessage
message, WebResponse response, Stream responseStream, Boolean asyncCall) v System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String
methodName, Object[] parameters) v T4CServices.SendInfo.SendInfo.GetEventSources(String
CusMovexCode) v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\Web References\SendInfo\Reference.cs:řádek
221 v T4CServices.SendInfo.SendPeriodicInfo.ProcessShortInfo() v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendPeriodicInfo.cs:řádek
144 v T4CServices.SendInfo.SendPeriodicInfo.SendShortInfo() v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendPeriodicInfo.cs:řádek
44 v T4CServices.SendInfo.SendPeriodicInfo.SendPeriodicInfo_ServiceProcess()
v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendPeriodicInfo.cs:řádek
39 v T4CServices.GeneratorService._timer_Elapsed(Object sender, ElapsedEventArgs
e) v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\Base\GeneratorService.cs:řádek
200
Error - 1.9.2017 13:45:39 | Computer Name = Uzivatel-PC | Source = T4CGenerate | ID = 0
Description = Assembly: T4CServices (3.7.0.17) Culture Info: cs-CZ Current Time: 1.9.2017
19:45:39 SendQueryResult-> System.Net.WebException: Požadavek se nezdařil se stavem
HTTP 404: Not Found. v System.Web.Services.Protocols.SoapHttpClientProtocol.ReadResponse(SoapClientMessage
message, WebResponse response, Stream responseStream, Boolean asyncCall) v System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String
methodName, Object[] parameters) v T4CServices.SendInfo.SendInfo.GetDbQuery(String
CusMovexCode, String& Db, Int32& QueryId) v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\Web
References\SendInfo\Reference.cs:řádek 311 v T4CServices.SendInfo.SendQueryResult.Do()
v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendQueryResult.cs:řádek
41 v T4CServices.SendInfo.SendQueryResult.Run() v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendQueryResult.cs:řádek
17
Error - 1.9.2017 13:45:39 | Computer Name = Uzivatel-PC | Source = T4CGenerate | ID = 0
Description = Assembly: T4CServices (3.7.0.17) Culture Info: cs-CZ Current Time: 1.9.2017
19:45:39 Error on processing SendPeriodicInfo service. System.Net.WebException: Požadavek
se nezdařil se stavem HTTP 404: Not Found. v System.Web.Services.Protocols.SoapHttpClientProtocol.ReadResponse(SoapClientMessage
message, WebResponse response, Stream responseStream, Boolean asyncCall) v System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String
methodName, Object[] parameters) v T4CServices.SendInfo.SendInfo.GetEventSources(String
CusMovexCode) v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\Web References\SendInfo\Reference.cs:řádek
221 v T4CServices.SendInfo.SendPeriodicInfo.ProcessShortInfo() v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendPeriodicInfo.cs:řádek
144 v T4CServices.SendInfo.SendPeriodicInfo.SendShortInfo() v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendPeriodicInfo.cs:řádek
44 v T4CServices.SendInfo.SendPeriodicInfo.SendPeriodicInfo_ServiceProcess()
v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\SendInfo\SendPeriodicInfo.cs:řádek
39 v T4CServices.GeneratorService._timer_Elapsed(Object sender, ElapsedEventArgs
e) v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\Base\GeneratorService.cs:řádek
200
Error - 1.9.2017 13:48:28 | Computer Name = Uzivatel-PC | Source = T4CGenerate | ID = 0
Description = Assembly: T4CServices (3.7.0.17) Culture Info: cs-CZ Current Time: 1.9.2017
19:48:28 Error on processing TrackActivity service. System.Net.WebException: Požadavek
se nezdařil se stavem HTTP 404: Not Found. v System.Web.Services.Protocols.SoapHttpClientProtocol.ReadResponse(SoapClientMessage
message, WebResponse response, Stream responseStream, Boolean asyncCall) v System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String
methodName, Object[] parameters) v T4CServices.SendInfo.SendInfo.GetTrackActivityCount(String
licenseKey) v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\Web References\SendInfo\Reference.cs:řádek
132 v T4CServices.TrackActivitySend.TrackActivitySender.CallWebService() v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\TrackActivitySend\TrackActivity.cs:řádek
100 v T4CServices.TrackActivitySend.TrackActivitySender.TrackActivitySender_ServiceProcess()
v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\TrackActivitySend\TrackActivity.cs:řádek
29 v T4CServices.GeneratorService._timer_Elapsed(Object sender, ElapsedEventArgs
e) v C:\Branches\3.7.0\Synchronizer_sn\T4CServices\Base\GeneratorService.cs:řádek
200
[ System Events ]
Error - 29.8.2017 19:06:16 | Computer Name = Uzivatel-PC | Source = Service Control Manager | ID = 7034
Description = Služba T4C DLM byla neočekávaně ukončena. Tento stav nastal již 2krát.
Error - 29.8.2017 19:06:23 | Computer Name = Uzivatel-PC | Source = Service Control Manager | ID = 7034
Description = Služba T4C Calm Synchroniser byla neočekávaně ukončena. Tento stav
nastal již 2krát.
Error - 29.8.2017 19:06:29 | Computer Name = Uzivatel-PC | Source = Service Control Manager | ID = 7034
Description = Služba T4C Mobile API Service byla neočekávaně ukončena. Tento stav
nastal již 2krát.
Error - 29.8.2017 19:06:34 | Computer Name = Uzivatel-PC | Source = Service Control Manager | ID = 7034
Description = Služba T4C Device Synchroniser byla neočekávaně ukončena. Tento stav
nastal již 2krát.
Error - 30.8.2017 15:07:07 | Computer Name = Uzivatel-PC | Source = DCOM | ID = 10009
Description =
Error - 30.8.2017 16:06:12 | Computer Name = Uzivatel-PC | Source = DCOM | ID = 10009
Description =
Error - 31.8.2017 12:19:03 | Computer Name = Uzivatel-PC | Source = Microsoft Antimalware | ID = 2001
Description = %%860 zjistil chybu při pokusu o aktualizaci podpisů. Nová verze podpisu:
Předchozí verze podpisu: 1.251.240.0 Zdroj aktualizace: %%859 Fáze aktualizace: %%854
Zdrojová
cesta: http://www.microsoft.com Typ podpisu: %%800 Typ aktualizace: %%803 Uživatel:
NT AUTHORITY\SYSTEM Aktuální verze modulu: Předchozí verze modulu: 1.1.14104.0 Kód
chyby: 0x80070643 Popis chyby: Při instalaci došlo k závažné chybě.
Error - 31.8.2017 12:19:45 | Computer Name = Uzivatel-PC | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Instalace se nezdařila: Instalování následující aktualizace se nezdařilo
z důvodu chyby (0x80070643): Aktualizace definic pro Microsoft Security Essentials
- KB2310138 (definice 1.251.331.0).
Error - 31.8.2017 15:05:24 | Computer Name = Uzivatel-PC | Source = DCOM | ID = 10009
Description =
Error - 31.8.2017 16:04:29 | Computer Name = Uzivatel-PC | Source = DCOM | ID = 10009
Description =
< End of report >
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Podivné chování prohlížečů
Lituji, ale váš oper. systém skutečně legální není. Běží v něm nelegální aktivátor. Z toho důvodu nemohu pokračovat v čištění. Viz pravidla: https://forum.viry.cz/viewtopic.php?f=12&t=115512 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Podivné chování prohlížečů
Tak to netuším, jak je to možné. Windowsy jsem normálně legálně koupil s počítačem. Akorát jsem poté nainstaloval verzi, kterou jsem potřeboval, ale licence je zaplacena. Pro pořádek napíšu přesně, jak to bylo.
Koupil jsem počítač s 64 bitovou verzí Win 7, dostal jsem k tomu i instalační DVD
Zjistil jsem ale, že potřebuju 32 bitovou verzi, ale ta na inst. DVD nebyla
Kontaktoval jsem prodejce, jestli nedojde k nějakým konfliktům s hardwarem, když koupím 32 bitovou verzi
Bylo mi zděleno, že můžu nainstalovat požadovanou verzi i ze zdroje z internetu a aktivovat jí pomocí licenčního kódu na bedně, protože licenci pro tento konkrétní počítač jsem zaplatil a ta platí pro verze 64 i 32 bitů
Normálně mi fungují aktualizace i vše ostatní, nikdy nevyskočila žádná hláška, že by bylo s licencí něco špatně, a to tento systém provozuji už sedm let
Koupil jsem počítač s 64 bitovou verzí Win 7, dostal jsem k tomu i instalační DVD
Zjistil jsem ale, že potřebuju 32 bitovou verzi, ale ta na inst. DVD nebyla
Kontaktoval jsem prodejce, jestli nedojde k nějakým konfliktům s hardwarem, když koupím 32 bitovou verzi
Bylo mi zděleno, že můžu nainstalovat požadovanou verzi i ze zdroje z internetu a aktivovat jí pomocí licenčního kódu na bedně, protože licenci pro tento konkrétní počítač jsem zaplatil a ta platí pro verze 64 i 32 bitů
Normálně mi fungují aktualizace i vše ostatní, nikdy nevyskočila žádná hláška, že by bylo s licencí něco špatně, a to tento systém provozuji už sedm let
Naposledy upravil(a) Mlok dne 01 zář 2017 21:03, celkem upraveno 1 x.
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Podivné chování prohlížečů
Na to se musíte zeptat toho, kdo vám to prodal. Já tam vidím nelegální aktivátor, který v legálním systému není.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Podivné chování prohlížečů
Tak to se asi nedá nic dělat. I tak moc děkuji za Váš čas
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Podivné chování prohlížečů
Nemáte zač!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?